Skip navigation and search
We no longer support Internet Explorer. Consider switching to Chrome, Edge, Firefox or a similar browser for a faster and smoother experience. Open in Microsoft Edge
Cart

Your shopping cart has expired!

Please click continue to add items to the cart

Continue

Privacy Notice for Website

PostNord has a 400-year history of protecting the secrecy of correspondence and securely getting messages to their destination, regardless of the challenges of the time. In this Privacy Notice, we tell you how we collect, protect, and use personal data.

Last update: 2026.01.28

On this page:

  1. About us
  2. Personal data in letters and parcels
  3. What personal data do we have about you?
  4. Where do we get your personal data from?
  5. How do we use your personal data?
  6. Who do we share your personal data with?
  7. Where do we process your personal data?
  8. How long do we keep your personal data for?
  9. How do we protect your personal data?
  10. What rights do you have?
  11. How to contact us

1. About us

PostNord Sverige AB is the controller for processing activities as described in this notice. This means we are responsible for ensuring that we process your personal data in accordance with applicable data protection legislation.

PostNord Sverige AB is a fully owned subsidiary of PostNord Group AB, which means that, as part of a group of companies, we share certain business functions across several companies, such as IT services, reporting, and information security. However, PostNord Sverige AB is stil controller regarding those individuals whose personal data we process. 

PostNord’s primary service is to deliver letters, parcels, and goods as part of our national and international postal and parcel services.

This Privacy Notice applies to all individuals who make use of our services, who provide us with their services, and who otherwise interact with us. More specifically, it applies to individuals who are:

  • our customers, for example, when you send letters and parcels,
  • recipients of our services, for example, when you receive letters and parcels that someone else sends you,
  • otherwise in contact with us, for example, when you contact our customer service, visit and use our digital channels such as our website and social media, or participate in marketing activities, competitions, and customer surveys,
  • employed or hired by one of our business partners or service providers.

This Privacy Notice, together with other information provided at the time of data collection, tells you what personal data we collect about you, how and why we use it, and what your privacy rights are.

2. Personal data in letters and parcels

PostNord does not process personal data inside the letters and parcels it handles. Therefore, PostNord is neither a controller nor a processor for personal data contained within letters and parcels. If you would like to file a complaint regarding the processing of such personal data, you need to contact the sender of the letter or parcel. Where we process personal data for sorting, tracking, and delivering mail or parcels, we are the data controller.

3. What personal data do we have about you?

In the context of our services, we may process the following categories of personal data about you:

  • Identity and contact information, such as name, email address, phone number, physical address, and other delivery locations, including geolocation, physical address history, social security number, and (electronic) signature. 
    For employees of business customers, business partners, and service providers, we process the business’s name, position in the business, and the business’s address, email address, and phone number
  • Financial and payment information, such as the price of the service, credit card details, and preferred method of payment.
  • Product and service-related information, such as the type of service used and details about the item.
  • Delivery-related information, such as delivery preferences, delivery point chosen, proof or documentation of an (attempted) delivery or return, as well as a history of deliveries.
  • Other identifiers, such as tracking numbers, barcodes, and parcel numbers on items.
  • Customs-related information, such as details of the item’s content.
  • Marketing preferences, such as your choices and consent.
  • Customer history, relating to previous purchases and services used, such as parcels sent,
  • Contact history and records of enquiries, complaints, and claims, such as details of the case, feedback, comments, incident reports, and other information we need to handle your case, the results of your enquiry, comment, or complaint.
  • Recordings of you, including images and audio recorded on CCTV and other equipment, and recorded telephone conversations when you talk with our customer service.
  • Customer account information, such as login information and professional information.
  • Information about your use of our digital channels, such as IP address, device information, browser information, information about how you navigate our website, and other information about your visit.

Any other additional information you may provide to us.

4. Where do we get your personal data from?

We make use of the personal data that you give to us and information that we collect and generate about you.

Information you give to us

Some of the personal data we process about you, we receive from you. You may directly or indirectly give us this information in different ways, for example, when you make use of our products and services or when you interact with us.  

Information we collect or generate about you

We receive personal data about you from various sources:

  • The sender of an item,
  • Customs Agencies,
  • Public or external registers and databases,
  • Business partners, such as banks, providers of payment solutions, and our logistics partners, such as providers of postal or parcel services,
  • Information we receive from persons delivering letters and parcels on behalf of PostNord, for example, relating to an update of or correction of an address, building access codes, and floor numbers,
  • Public authorities,
  • Your digital devices, such as your computer and phone, when you access and use our digital channels.

We also need to generate personal data ourselves, for example, parcel tracking numbers and customer numbers, which are necessary for us to deliver letters and parcels.

5. How do we use your personal data?

We use your personal data primarily to provide our services. We also need your information for our business purposes and because we must comply with legal obligations.

We are only allowed to use your personal data when we have a legal basis to do so. Often, the legal basis is connected to your responsibility to deliver a letter or parcel or fulfill a contract related to our services. In other cases, we must comply with legal obligations, or we have a legitimate interest in using your personal data. More than one legal basis could apply when we use your personal data for a particular purpose.  

We use your personal data mainly for the following purposes:

  • To deliver letters, parcels, and goods to the right recipient at the correct address,
  • To manage our agreement with you. This includes processing payments and refunds for our services,
  • To manage charges,
  • To communicate with you,
  • To provide you with a PostNord account,
  • To handle enquiries, complaints, or claims, and to allow you to provide reviews of our services.
  • To maintain, develop, improve, and test our IT systems and services,
  • To market our products and services,
  • To improve our products and services and create new ones,
  • To conduct customer surveys and carry out market research,
  • To prevent, detect, and prosecute fraud, crime, and misuse of our services and systems, enabling us to protect our customers, employees, and property,
  • To comply with legal requirements, such as customs, tax, and security requirements.

Please see Annex 1 – Purposes for an extensive overview of the reasons why we process personal data about you.

Artificial Intelligence

We may use Artificial Intelligence (AI) to improve our services, for example, when you are in contact with us. When we use AI, we process your information securely and in accordance with applicable legislation.

6. Who do we share your personal data with?

We need to share your personal data with PostNord Group AB and other subsidiaries. This is necessary for purposes such as providing digital services, customer support, maintaining business continuity, ensuring information security, and meeting legal requirements such as reporting, bookkeeping, and billing.  

Additionally, we must share your personal data with others when this is necessary for reasons listed under point 4 of this Privacy Notice.

  • Logistics and business partners and other partners involved in the transport and delivery of items to you, such as providers of postal or parcel services and parcel delivery service points.
  • PostNord’s business Customers. We need to disclose your information to our business customers when we provide them with warehouse and logistics services, which involve you. This is the case when you purchase on an online shopping platform who is using PostNord as its warehouse or logistics supplier.
  • Our service providers and other partners. We share your personal data with our service providers who help us in our daily operations, such as providers of payment solutions, banks, and insurers, as well as suppliers of digital solutions, operating services, and system support. We may also share your personal data with organisations that help us develop and improve our services, for example, through market research.
  • International postal authorities and carriers. When you send a letter or parcel overseas or receive an item from overseas, we will share personal data with international postal authorities and carriers.
  • Authorities, public actors, and other recipients. Legal obligations may require us to share information about you, for example, to respond to requests from law enforcement agencies, customs agencies, regulatory agencies, and other public and government authorities. We may also disclose information if needed to detect and prevent fraud or for other legal, security, and safety reasons.
  • Parties involved in legal proceedings. In connection with a potential legal proceeding, including in the preparatory work enabling us to defend ourselves against or enforce any legal claims, your personal data may be shared with parties involved in the proceedings, such as lawyers.
  • Parties involved in a merger or acquisition. We may share or transfer your personal data in connection with a merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
  • Professional advisors, such as lawyers, accountants, and auditors.
  • Other parties. Upon your request or if you permit us to do so.

7. Where do we process your personal data?

When we use or share your personal data, it may be sent to companies both within and outside the European Economic Area (EEA). We will make sure that these transfers follow the law.

If personal data is sent outside the EEA, we will protect it properly. For example, we may rely on the European Commission’s model clauses or send your information to countries that provide a good level of protection according to the European Commission.

8. How long do we keep your personal data for?

We keep your personal data only for as long as we need it for the reason we collected it. This means that we keep different types of information for different periods of time, depending on the reason for having them.

9. How do we protect your personal data?

We have technical and organisational security measures and systems in place to protect and safeguard your personal data. For example, procedures to prevent unauthorised access to, and misuse of, personal data. We also use security procedures and technical and physical restrictions for accessing and using the personal data on our servers.

Only those individuals who have a genuine business need in the course of their work are authorized to access personal data. They are governed by our rules of information and IT security, data protection, and other relevant internal regulations and guidelines. They are also bound by confidentiality. 

While we have measures in place to protect your personal data, unforeseen security incidents can never be precluded. Therefore, we have procedures in place to manage security incidents and to comply with legal requirements applicable to the detection, handling, and notification of personal data breaches.

10. What rights do you have? 

Under certain circumstances, you have rights in relation to your personal data, which include the following:

  • Right to erasure (“right to be forgotten”). You have the right to have your personal data erased when they no longer needed for the purposes they where collected for or when they are collected based on your consent. However, there are many situations where we are not able to delete your personal data, although you request it, such as when necessary to fulfil our legal obligation or when fulfilling our contractual responsibility.
  • Right to rectification. You have the right to have your inaccurate or incomplete information about yourself corrected.
  • Right to access your data. You have the right to know what personal data we process about you and why. You can also request a copy of your personal data, which we process.
  • Right to restriction. You can ask us to limit our processing of your personal data until inaccurate or incomplete information about you has been corrected, or until an objection from you has been handled.
  • Right to object. When we process your personal data based on a legitimate interest, you have the right to object to this processing when you believe that your personal interest outweighs ours. We will cease the processing, unless we can demonstrate compelling legitimate grounds for the processing which override your interests.
  • Right to transfer your data. In certain situations, you have the right to ask us to transfer the personal data we hold about you to someone else.
  • Right to withdraw your consent. You may at any time withdraw any consent you have given us. However, please note that withdrawing your consent will not affect any processing that has already taken place.
  • Right to complain. You have the right to lodge a complaint to the supervisory authority “Integritetsskyddsmyndigheten” (IMY). If you live in another country within the EU/EEA, then you can also turn to the supervisory authority in that country. However, we ask you to first contact PostNord if you believe that we have processed your personal data in violation of data protection legislation or this Privacy Notice, so that we can support you.

Please note that legal rights or obligations may prevent us from disclosing or transferring all or part of your information, or from immediately deleting your information.

11. How to contact us

If you have any questions or comments regarding your personal data or this Privacy Notice, or if you want to make use of your rights, you can reach out to us by contacting

PostNord Sverige AB
Terminalvägen 24
171 73 Solna, Sverige
integritet@postnord.com