You can see the rules and regulations in other jurisdictions.
Under the current Swiss Data Protection Act, protected data are not only data relating to persons but also data relating to legal entities. In order to protect personal data from unauthorised processing, adequate technical and organizational measures must be taken. Data processing is any operation with personal data, regardless of the means employed and the process used, including collection, storage, use, revision, disclosure, archiving, or destruction. It is therefore possible to be covered by Swiss data protection law even if you are providing information or comparing products on a website (unless the data are public). If the services, prices or business situation are reduced by inaccurate, misleading or unnecessarily infringing statements, such a comparison may be unfair under the UCA. It may be sufficient for Swiss data protection law to apply to personal data stored on a server in Switzerland.1
It is possible to consider digital profiling to be a personality profile or even to include sensitive personal data within the meaning of the Data Protection Act. In other words, it is a collection of data that allows a natural person's essential characteristics to be assessed. Personality profiles (and sensitive personal data) must not be disclosed to third parties without consent. In addition, the data processor must inform the person concerned of:
A new Data Protection Act (more aligned but not identical to the EU General Data Protection Regulation (GDPR)) was approved by parliament on 25 September 2020.1
Parliament approved the new Data Protection Act on 25 September 2020 (more aligned with the GDPR, but not identical).1
Cross-border payments in Switzerland
We provide legal and organizational services for the creation, structuring and development of fintech companies
Participation as a lawyer at investment venture funds, leading venture M&A deals in IT, supporting iGaming and business assets