This is an easy version of our privacy policy. It is simpler and shorter than the full version. If we have a disagreement, the full version is valid. If you would prefer to read the full version, click the link below:
About BankID and personal data
With BankID you can identify yourself and sign digitally. You get BankID from your bank. Your BankID is yours alone. You are not allowed to lend it to anyone else.
When you use BankID, we need to share information about you. The information is called personal data and can, for example, be your name and personal identity number.
On this page you can read about:
• What data is used.
• How the data is collected.
• How the data is used.
• How the data is shared.
• How the data is protected.
• What you have the right to do and be informed about.
About us
We are the company offering BankID. Our name is Finansiell ID-Teknik BID AB.
Organization number: 556630-4928
Phone number: +46 8 411 81 50
Email: produktinfo@bankid.com
Address: Kungsgatan 33, 111 56 Stockholm.
The bank you got your BankID from is responsible for how your personal data is used. If you want to know more, you can contact your bank. You can also contact our data protection officer at:
• Phone number +46 8 411 81 50
• Email to the address dpo@bankid.com
Data and information that we receive
When you become a customer of a bank, the bank saves information about you. When you get a BankID, the bank sends information to us, so that we can make a BankID for you.
We have a list of all BankID that exist. We get information about who has died so that we can block their BankID.
You can block your BankID yourself whenever you want. Contact your bank for help doing so.
How your personal data is processed
We only use your information if we need it and if it is legal. This may include:
• When you get a BankID.
• When you use your BankID.
• If we are required to share information about you by law.
• So that we can reduce fraud.
• If you have approved our use of your information.
Below you can see the categories of personal data we process:
| Category | Examples, personal data |
|---|---|
About you |
Name, age and personal identity number. |
Usage |
Your identifications and signatures and where you made them. Sometimes we may get sensitive personal data about you, such as ethnic origin, political, religious or philosophical beliefs or union membership or information about health or sexuality. |
About the device |
Technical information such as time of use, IP address, logs, model of mobile phone or computer, operating system, version of BankID security software and type of BankID. |
Facial recognition |
Image from your ID document, a recent photo of you and the result of a comparison of the two photos. |
ID card |
Type of ID document; passport or national ID card and MRZ code, that the ID document is valid and your image from the ID document. |
Location |
Your location information when you get or use your BankID. |
Biometrics |
If you have done an "Extra control with facial recognition" or "Identification with facial recognition". |
Reinforcement |
Information that you have done a reinforcement such as "Verification of ID document" or "Extra control with facial recognition". |
Personal identification number blocking |
Information about obstacles to gettind BankID based on your personal identification number and what date the block will be removed. |
Block |
Which BankID has been blocked, when and why. |
About you
Name, age and personal identity number.
Usage
Your identifications and signatures and where you made them.
Sometimes we may get sensitive personal data about you, such as ethnic origin, political, religious or philosophical beliefs or union membership or information about health or sexuality.
About the device
Technical information such as time of use, IP address, logs, model of mobile phone or computer, operating system, version of BankID security software and type of BankID.
Facial recognition
Image from your ID document, a recent photo of you and the result of a comparison of the two photos.
ID card
Type of ID document; passport or national ID card and MRZ code, that the ID document is valid and your image from the ID document.
Location
Your location information when you get or use your BankID.
Biometrics
If you have done an "Extra control with facial recognition" or "Identification with facial recognition".
Reinforcement
Information that you have done a reinforcement such as "Verification of ID document" or "Extra control with facial recognition".
Personal identification number blocking
Information about obstacles to gettind BankID based on your personal identification number and what date the block will be removed.
Block
Which BankID has been blocked, when and why.
When you get and use BankID
We use the data in the categories: About you, About the device and ID card.
We save the data for 6–11 years.
When you get and use a digital ID card
We use the data in the categories: About you, Usage, About the device, Biometrics and Location information.
We save the data for 11 years. ID card data is saved as long as your physical ID document or your BankID is valid (depending on which time is shorter).
When you do a reinforcement
If you tap your passport or national ID card to confirm your identity an extra time, we use data in the categories: About you, Usage, About the device, ID card and Location information. We save the data for 6–11 years.
If you confirm your identity once more with facial recognition, we use data in the categories: About you, facial recognition and ID card. We save the data for 6-11 years. Facial recognition and ID card data are stored until you withdraw your consent or as long as your physical ID document or BankID is valid (depending on which time is shorter).
If you perform an identification with facial recognition when you are going to get a new BankD, we use data from the categories: About you, ID card and Location information. We save the data for 6-11 years. Facial recognition and ID card data are only saved while you are doing the online identification. The image from your ID document and the comparison image are saved for 72 hours.
When you get support
We use the information you provide us when you get help with your BankID.
The data is saved for one year.
To make our services and websites better
For our work on making BankID and our services better, we use data in the categories: Usage and About the device.
We save the data for 6 months.
Blocking BankID
If a bank believes that a BankID is being used by the wrong person or in a way that is not allowed, the bank must block it. If a BankID is blocked, it is no longer possible to use it. If the bank blocks it, the information is used in the categories About you and Block.
The data is saved for 11 years.
Personal identification number blocking
A bank can block people from having a BankID. This can happen if the person uses BankID in a way that is not allowed. In that case, other banks are also not allowed to give that person a BankID. The banks share information with each other about which people are not allowed to have a BankID. Then data in the Personal identification number blocking category is used.
The data is saved for 12 months.
Usage monitoring
Your personal data is processed to analyse data about your user behaviour. We do this to ensure that BankID is not misused or used in a way that is not permitted. This helps protect you against identity fraud or ID theft. We may also use information about your previous use of BankID to prevent, deter or investigate crime. The bank may use information we share with them to block or suspend BankID.
The data is saved for 6 years.
Automated decisions when issuing BankID
We use automated decisions when issuing a BankID. This means that you may be denied a BankID based on an automated decision. Talk to your bank if you want to know more.
Our role as data controller
Register management
Your personal data is used for our register of issued BankID. We perform ongoing checks of changes to the State Personal Address Register (SPAR) to block issued BankID for users who have died or been removed from the population register. The data is deleted immediately after the register is updated.Scanning a digital ID card
Your personal data is used to enable you to use a digital ID card. The data is only saved as long as your ID card is open for scanning.
Who we share data with
We share data with:
Banks within the BankID collaboration
Organizations that use BankID in their e-services
Authorities and other actors
Your data is secure
Your personal data is saved in systems that can only be accessed by the bank, our employees and companies that need the data. We have many technical protections that ensure that your data is secure.
What you can do
Contact the bank you received your BankID from if:
• You want to know which of your personal data is collected and saved. You can see what personal data we have saved about you in the BankID app or program, under history.
• Your data is incorrect and you want to correct it. For example, if you change your name, you need to get a new BankID with the correct name.
• You no longer want your personal data to be used. Ask your bank to block your BankID. You can also block your BankID yourself. You can also remove your digital ID card and revoke any consents you have given in the BankID app/program.
How your data is saved and shared
The bank and we only save and use your data within the EU/EEA. We do not send it to any country outside the EU/EEA. However, companies and organizations with which you use your BankID may do so. Therefore, it is a good idea to also read their privacy policy.
This is an easy-to-read version
This is an easy version of our privacy policy. It is simpler and shorter than the full version. If we have a disagreement, the full version is valid. If you would prefer to read the full version, click the link below: