The data protection regulations (DSG, Data Protection Act) were revised last year. The associated changes have already come into force.

The aim of the revision is to align with the EU GDPR in order to achieve an equivalent level of data protection. Switzerland is thus treated as a country with an appropriate level of data protection and data transfer between the EU and Switzerland can continue to take place unhindered.

At least the same level of protection

• No regulation of deceased data (DSG 16)
• Principle of active duty to provide information with general clause (DSG 17 and 54 I b)
• Data Protection Advisor (DSG 9)
• Codes of conduct with EDOEB opinion (DSG 10)
• List of processing activities; SME exception < 250 employees (99% of companies) (DSG 11)
• Representative of foreign responsible persons in Switzerland (DSG 12a)
• Notification abroad in principle (DSG 13 ff.)
• Automated individual decision (DSG 19)
• Data protection impact assessment (DSG 20 f.)
• Breach Notification (DSG 22)
• Data portability (DSG 25 ff.)
• Legal claims (DSG 28)
• Processing by federal bodies (DSG 30 ff.) Position and competencies of the FDPIC (largely) (DSG 39 ff.)
• Position and competencies of the FDPIC (largely) (DSG 39 ff.)
• Administrative assistance (DSG 48 f.)
• Criminal provisions (largely) (DSG 54 ff.)
• Final provisions (DSG 62 ff.)

‍

‍