Résumé

This document presents a brief overview of the EU’s General Data Protection Regulation (GDPR) as well as the new Swiss data protection law: the Federal Act on Data Protection1 (FADP). The purpose of these laws is to give control of personal data back to citizens by prohibiting organizations from processing personal data without a person’s consent. Though we review both the GDPR and FADP, more emphasis is placed on the GDPR than the FADP for two reasons. First, the GDPR has been in effect since 2018 whereas FADP only came into effect in September 2023. Second, FADP is inspired by the GDPR and arguably aims to give Switzerland a compatible law. After our introduction, Section 2 defines key terms and Section 3 gives the principal requirements for organizations to become privacy compliant. Section 4 analyzes privacy compliance in the context of organizational scenarios like cloud usage, client onboarding, and the hiring process. Section 5 gives examples of fines already given out for violations of GDPR. Finally, Section 6 briefly compares the FADP to the GDPR.

Détails

Actions

PDF