Cookies on Malmö University's website
A cookie is a text file sent from our website and stored on your computer or device.
Our site contains two different types of cookies:
persistent cookies — these are text files sent from our websites and stored on your computer; and
session cookies — these are only stored temporarily and disappear once you close your browser.
Cookies used by Malmö University
We use Google Analytics, Siteimprove Analytics, Vizzit Analytics, and Facebook Pixel cookies.
How to disable cookies
You can disable and delete cookies by changing the settings in your browser. How to do this depends on what browser you are using. You can find more information by checking your browser's help resources.
GDPR — processing personal data
Malmö University, as a public authority, processes personal data in accordance with EU regulation 2016/679 of the European Parliament and European Council. This regulation is referred to as the General Data Protection Regulation (GDPR).The University is responsible for the processing of all personal data related to its operations.
If you have any questions regarding GDPR, please contact the University's Data Protection Officer: email@example.com
Malmö University only processes personal data when required for a specific purpose. This includes collecting data about students, reseachers, employees, patients, job applicants, collaboration partners and conference participants.
The majority of this information will be collected directly from you. In certain cases, we also collect data from other sources such as the Swedish Tax Agency or the Swedish Board of Student Finance (CSN).
The type of personal data we process depends on the information we require. This can include:
contact information such as your name, address, phone number and email;
personal identification numbers;
bank details or other financial information in order to make a payment or send an invoice;
personal data that has been collected as part of participation in a research study;
study results or other information regarding your academic work;
information about patients at our dental clinic or at the Student Health Service;
information collected when using our websites, such as cookies;
information required for conference attendance or course participation; and
personal data which is necessary for employment, or as part of the recruitment process.
Since we are a public instition, a lot of information at the University is public record. If your personal data can be found in a public record, anyone who requests access to this document can view it, unless the Public Access to Information and Secrecy Act (2009:400) prevents this.
Malmö University may only transfer personal data to third parties if there is a legal basis to do so.
Your personal data may be disclosed to Malmö University's partners during research projects, to suppliers, or to other parties that need access to this data due to an agreement between yourself and the University. Data may also be disclosed to external parties if this is in the public interest, is part of an operation of an official authority, or due to legal obligation.
When transferring personal data to another party, we take all legal, organisational and technological precautions necessary to protect your data. You will be informed if we plan to disclose information about you to other organisations.
Malmö University must ensure that all processing of personal data is protected through technological and organisational measures. The level of these measures must be proportional to the security risk.
Security entails confidentiality, integrity and availability as well as adequate technological protection. This may involve giving only authorised individuals access to personal information, encrypting this information, storing it in specially protected locations and making processing copies. The University has an information security management system that: continuously reviews all administrative systems in which risk and vulnerability analyses are carried out; classifies the information; charts system dependence; and conducts follow ups.
The processing of personal data must have a legal basis, meaning it must be required for a specific purpose.
Malmö University processes personal data in order to fulfill our duties as a public authority, specifically within the field of research and education, and for collaboration purposes. This data is also processed in order to review and develop our operations, and comply with Swedish law. All processing of personal data at the University occurs in order to promote these purposes in some form.
Your teacher, manager or head of research can provide you with more information on how your personal data is used.
We only store your personal data for as long as is necessary for processing purposes, or as long as is required by law.
If, for example, you are an employee, we process your personal data for as long as we need to manage the terms of your employment.
If you are a student, we process your personal data for as long as you are enrolled at Malmö University; in practice this means six months after the last course registration has ended, unless you notify us earlier.
If you are a participant in a study, we process your personal data for as long as is necessary to ensure the quality of the research.
In regard to official documents, personal data is managed in accordance with the Freedom of the Press Act (1949:105), the Archives Act (1990:782) and the Swedish National Archive's regulations. In many cases, this means that your personal data may be stored in Malmö University's archive for a minimum of five years.
Malmö University may transfer personal data to a country outside of the EU/EEA, primarily as part of international research projects. You will be notified should this be the case. The University will then take all reasonable legal, organisational and technological precautions necessary to ensure an adequate level of security for your personal data. Personal data may also be transferred to non-EU countries in connection with procured IT services; however, the University will only do so if the security of this data can be guaranteed.