HERE'S THE CHALLENGE
Switzerland's new data protection law – a revised version of the Federal Act on Data Protection or "FADP” - took effect in September 2023, requiring organizations, even non-Swiss companies that do business in Switzerland, to follow guidelines when handling Swiss data.
Like GDPR, which offers a general rule set for data protection across the EU, Switzerland's national regulation adds new categories of data deemed sensitive and levies additional fines – as much as 250,000 Swiss Franc for serious offenses - for the misuse of Swiss data.
HERE'S THE SOLUTION
Leveraging a robust data loss prevention solution like Digital Guardian can help organizations embrace safer data practices and protect personal data in Switzerland. Digital Guardian, which can help automatically identify GDPR regulated data and protect it, in use, in transit and at rest, can help organizations organizations looking to comply with the FDAP as well.
PROTECT SENSITIVE DATA
Digital Guardian gets to work fast, identifying regulated information like sensitive data, including data related to health, genetics, or biometrics, as soon as it’s created and helping apply persistent classification tags to data, both structured, and unstructured, and keep it protected, in use, in transit and at rest.
Digital Guardian for Compliance enables you to effectively discover, monitor and control personal data transmitted on the network, in use on workstations, or at rest in workstations, network servers and cloud storage.
ASSIST IN DATA PROCESSING
FADP requires all organizations in Switzerland, with the exception of small and midsize enterprises that fall under the risk threshold, to maintain an accurate register of all data processing activities they engage in. Our reporting can help demonstrate compliance by showing where Swiss personal data is located, how it’s used and what mechanisms you have in place to enforce Swiss data protection principles.
FACILITATE SAFE DATA TRANSFERS
Like the GDPR, under FDAP, data may be transferred abroad via Switzerland when an adequate level of data protection is guaranteed. With the correct policies in place, organizations can meet regulatory requirements by monitoring, controlling and if necessary, blocking data when it’s moved to an unauthorized location.