FDPIC

FDPIC: 29th Acti­vi­ty Report 2021/2022

The FDPIC has published its 29th acti­vi­ty report for the reporting peri­od from April 1, 2021 to March 31, 2022. The media release on the publi­ca­ti­on is enti­t­led “Dis­re­spect for pri­va­cy”. As always, the report is divi­ded into the­ma­tic are­as of data pro­tec­tion and the princip­le of publicity

Federal Coun­cil Report: Digi­tal Finan­ce – Fiel­ds of Action 2022+ 

At its mee­ting on Febru­a­ry 2, 2022, the Federal Coun­cil adop­ted the report on digi­tal finan­ce, which aims to iden­ti­fy the oppor­tu­nities and risks of the ongo­ing digi­tiz­a­ti­on of the Swiss finan­cial cen­ter. Fur­ther­mo­re, the report defi­nes twel­ve fiel­ds of action with spe­ci­fic mea­su­res and mandates

How Goog­le, Micro­soft and Sales­for­ce are imple­men­ting the new SCC and what this means for mana­gers in the EEA and Switzerland 

A con­tri­bu­ti­on by Lena Göt­zin­ger and Han­nes Meyle Sin­ce Sep­tem­ber 27, 2021, the trans­fer of per­so­nal data to coun­tries out­side the EEA that do not offer an ade­qua­te level of data pro­tec­tion from the per­spec­ti­ve of the GDPR must, in princip­le, com­ply with the data pro­tec­tion pro­vi­si­ons in for­ce on Sep­tem­ber 4, 2021.

FDPIC: State­ment on the dis­clo­sure of per­so­nal data to the US SEC 

On August 4, 2021, the FDPIC issued and published an Opi­ni­on to the U.S. Secu­ri­ties and Exchan­ge Com­mis­si­on (SEC) on the per­mis­si­bi­li­ty of data trans­fers by cer­tain Swiss finan­cial firms to the SEC. The back­ground to the Opi­ni­on is a requi­re­ment of U.S. law: Even

FDPIC: Updated gui­de­li­nes for data trans­fers abroad 

The FDPIC has repu­blished its “Gui­d­ance for the exami­na­ti­on of the admis­si­bi­li­ty of data trans­fers with a for­eign con­nec­tion (pur­suant to Art. 6(2)(a) DPA)” with a date of 18 June 2021: Web­site of the FDPIC on for­eign trans­fers Gui­d­ance (PDF) The gui­d­ance con­sists of

FDPIC – Opi­ni­on on Schrems II 

The FDPIC today published its opi­ni­on on the signi­fi­can­ce of the ECJ ruling on Schrems II and for­mu­la­ted impli­ca­ti­ons for data trans­fers of per­so­nal data to the USA and other coun­tries without an ade­qua­te level of pro­tec­tion wit­hin the mea­ning of Art. 6 (1) DPA. As