...
The Identity Provider performs authentication at the request of a service which [ORGANISATION] recognises, either via metadata provided by the SWAMID federation or because the service and [ORGANISATION] has a specific agreement. Depending upon the type of service involved, the purpose of the service and what relationship the service has to the [ORGANISATION’s] IdP, one or more pieces of personal data are transferred from [ORGANISATION’s] catalogue and authorization system to the requesting service. This procedure follows the intent of the Swedish personal data protection legislation..
All web services have access to a unique identifier which makes it possible for the user to save preferences after logging in such that the user has access to the same preferences during a subsequent login. This unique identifier is unique to that specific service and cannot be shared or traced between different web services.
Services that are categorised in SWAMID’s metadata with entity categories receive attributes in accordance with SWAMID’s recommendations, see below.
...