Processing of personal data
This website is run by Region Halland. Region Halland wishes to safeguard your personal privacy. This privacy message explains how Region Halland collects and manages your personal data when you visit this website, why we do this and how you can exercise your rights.
Who is the controller?
At Region Halland each committee and board is the data controller for the personal data processing that takes place within their organisation. The committee responsible for this website is Regionstyrelsen (Regional Executive Committee), Box 517, 301 80 Halmstad, org. no. 232100-0115.
What is personal data?
All types of information that can directly or indirectly be attributed to a physical living person are personal data. Examples include personal names, personal ID numbers, email addresses and postal addresses. Also, photos and sound recordings of individuals processed in computers, personal data even if no names are mentioned, along with electronic identities such as IP numbers.
What is processing?
Processing means all measures that can be taken regarding personal data, regardless of whether they take place automatically or not. Examples of processing are collection, recording, organisation, structuring, storage, adaptation, transmission and erasure.
How do we process your personal data?
When you visit this website, we collect web statistics that contain net identifiers, such as IP number and cookies, along with time stamps. We do this in order to compile statistics of how many users use the website. The legal basis for this processing is our legitimate interest in knowing how the website is used.
When you use the website form to contact us, we will collate the information you submit via the form. The information is used to manage your case. The legal basis for this processing is that it is necessary to perform a task carried out in the public interest or in our exercise of official authority.
In order to satisfy security requirements on the website, we collect web logs that contain net identifiers and time stamps. The web logs can also be used to discover or prevent different types of illegal use, to prevent the abuse of services and to discover and prevent the dissemination of viruses, spam and trojans. The legal basis for this processing is our legitimate interest in maintaining the security of the website.
How long do we save your personal data?
Personal data is saved as long as is necessary for the purpose. After that it depends on the applicable archive and deletion rules what can be deleted and what must be saved when the data occurs in public documents. Personal data of minor or temporary significance is erased, as it is no longer relevant under applicable decisions on deletion for Region Halland.
You can read more about storage times applicable to processing of your personal data in Region Halland’s document management plans.
Who do we share your personal data with?
In situations where it is necessary in order for Region Halland to be able to perform the region’s activities, we share your personal data with other companies that serve as our data processors. When your personal data is shared with processors, this is only for purposes aligned with the purposes for which Region Halland has collected the information.
Region Halland also shares your personal data with companies or other organisations that are independent data controllers. When your personal data is shared with independent data controllers, this is only in order for Region Halland to be able to perform the region’s tasks, or because we are obliged to do so by law.
Where do we process your personal data?
Region Halland always strives to process your personal data in Sweden or within the EU/EEA. Sometimes, however, Region Halland may be forced to transmit your personal data to a country outside the EU/EEA, for example if we share your personal data with a supplier established or storing personal data in a country outside the EU/EEA. Regardless of the country in which your personal data are processed, Region Halland takes all reasonable legal, technical and organisational steps to ensure that the level of protection is the same as in the EU/EEA.
In the event that personal data is processed outside the EU/EEA, the level of protection is guaranteed either through a decision from the European Commission that the country in question guarantees an adequate level of protection, or through the use of what are known as appropriate safeguards. Examples of such safeguards are standard contractual clauses or binding corporate rules. If you want a copy of the protective measures taken or information on where these have been made available, you are welcome to contact us.
How is your data protected?
Region Halland cares about your privacy. It therefore works continuously on taking all appropriate technical and organisational measures required in each individual case to protect your personal data, and on otherwise ensuring that processing is performed in line with applicable legislation.
Public access to information
Region Halland is covered by public access to information, which includes messages sent to us normally becoming public documents. Region Halland is obliged on request to issue data in public documents, provided that the data is not subject to confidentiality. The rules on publishing public documents and archiving regulations may also entail limiting some of your rights regarding your personal data.
What are your rights?
As a physical person, with personal data being processed by Region Halland, you have the majority of rights regarding your personal data. Below we describe which choices and possibilities you have and how you can exercise these rights in connection with Region Halland’s processing of your personal data.
Right to access
You are entitled to access your personal data. If you wish to have information about which personal data Region Halland processes about you, you can always request this in the form of a database excerpt. You will receive an answer within one month of making an application.
Right to rectification
If you observe erroneous, misleading or incomplete information about you, you can request rectification.
Right to be erased
In certain situations you have the right to request that your personal data be erased (“the right to be forgotten”), for example if your personal data has been processed illegally. However, you cannot have your data erased if we have legal obligations or rights to keep the data, or if the processing takes place under public access to information and confidentiality legislation.
Right to restriction
In certain situations you are entitled to demand that the processing of your data be restricted. If, for example, you dispute that the personal data Region Halland is processing about you is correct, you can request limited processing during the period that Region Halland requires to be able to check whether the personal data is correct.
Right to data portability
If you have submitted data to us of your own accord, you are entitled in certain situations to obtain and use your data in other places (“right to data portability”). On these occasions Region Halland is obliged to facilitate such transfer of data. One requirement is that Region Halland process personal data by virtue of consent or in order to meet the terms of an agreement with you. The personal data will then be issued in a usable format.
Right to object
In some cases you are entitled to object to processing of your data. In such circumstances, Region Halland may only continue to process the data if it is possible to prove that there are mandatory justifications for the data being processed.
If you have given your consent for the processing of your personal data, you are entitled to withdraw this consent at any time.
If you are dissatisfied with Region Halland’s processing of your personal data, you can lodge a complaint with Region Halland or the Swedish Data Protection Authority.
How can you exercise your rights?
If you wish to invoke any of the rights mentioned above, you are welcome to contact Region Halland’s data protection officer. If instead you wish to submit a complaint to a supervisory authority, we ask you to contact the Swedish Data Protection Authority. You will find contact details for the Authority at www.datainspektionen.se. More information on GDPR is also available there.
Changes to this privacy message.
Region Halland makes ongoing changes to this privacy message. A new version comes into effect when it is made available on this website.
Data protection officer
Region Halland’s data protection officer is responsible for data protection issues. If you have any questions about this information, the processing of your personal data or how you can exercise your rights, you are welcome to contact the region’s data protection officer at
Region Halland Data Protection Unit
Tel: 035-13 10 00
More information on Region Halland’s processing of personal data
If you would like to know more about how Region Halland processes personal data, also in contexts other than this website, please visit http://regionhalland.se/om-region-halland/organisation/dataskydd/ (in Swedish).
Updated 5 July 2019