Skip to content

Personal data breach

Here you notify personal data breaches. You notify both when you know that an incident has occurred, if you suspect that an incident has occurred or if you realise that there is a risk that an incident will occur.

What is a personal data breach?

A personal data breach occurs when:

  • personal data is knowingly, unknowingly or unlawfully destructed, distorted, altered or disappears.

  • someone who does not have authorised access to personal data, may access it.

  • when personal data is disclosed in an unauthorised way.

What should you do in case there is a personal data breach?

Staff/processors notify the incident to by mail, and a central group then assesses the gravity of the incident. Thereafter, the incident is notified to Swedish Authority for Privacy Protection (IMY), where necessary, within 72 hours after the incident has been discovered.