Data laws and regulations

Implication of the U.S. Cloud Act on Privacy Aspects

In March 2018 the U.S. Congress enacted the U.S. Cloud Act. From an EU-perspective there is significant concern that U.S. authorities might undermine the EU GDPR requirements by compelling U.S. providers to allow access to certain types of data stored outside the U.S.
1

What you can learn from tech giant’s data protection mistakes

The French data protection authority imposed a fine of 50 million euros against Google for violating the EU’s General Data Protection Regulation (GDPR) principles. What does this decision mean for your business, for your website and for your processes?
2

GDPR gives Data Protection Officers a hard time: How can they tackle it?

It’s sink or swim for DPOs as the GDPR creates a tsunami of challenges. With the stakes high, DPOs face great personal risk if they get it wrong. Still, they lack the resources, in-house know-how and authority to pull together the necessary expertise to deal with the rising tide of urgent requests.

Revision Datenschutzgesetz: Droht Rechtsunsicherheit für Schweizer Unternehmen?

Die EU-Datenschutzgrundverordnung (DSGVO) brachte die Schweiz in Zugszwang, ihr eigenes Datenschutzgesetz von 1992 zu revidieren. Bereits der Vorentwurf wurde heftig diskutiert und wurde mehrfach angepasst. Nun hat der Nationalrat darüber entschieden, wie es mit der Vorlage weitergehen soll.
3

GDPR in force now – Answers to the most important questions

The EU GDPR (General Data Protection Regulation) recently caused a sensation. Most affected Swiss companies have prepared themselves well for the new regulation. GDPR is in force now. What should we expect and what does the new law mean for Swiss companies?

The impact of the EU NIS Directive on Swiss companies

The EU Network and Information Security (NIS) Directive states that from 9 May 2018 onwards, the national legislations in the various EU member states need to be in place. The overall goal of the NIS Directive is to achieve an high common level of security of networks and information systems within the EU.