This article deals with the European Data Protection Basic Regulation (EU-DSGVO), which came into force on 25 May 2018. The original blog entry was written in German. We have translated the most important inputs here to English. You can find the complete blog entry in German here.
There is no way around the fact that the topic of data protection should be considered and discussed in Swiss companies. In our opinion, this tendency to protect personal data and to make companies more obligated is to be welcomed. However, it is questionable whether consumers are really better protected. There seems to be a danger that in the end there will be a lot of administrative work to update the general terms and conditions, while processes will not really change from the customer's point of view. However, valuable rights exist especially in relation to the "big ones"!
We recommend the following courses of action:
The topic of the EU-DSGVO must be taken seriously and its implementation must be reviewed and implemented by 25 May 2018 at the latest. An individual check is necessary as to which data are collected for which purposes and how and why they are processed.
The EU-DSGVO also applies to cookies! We will be happy to help you list which data is collected and how.
The use of tracking tools and other third-party services requires special attention. In particular, it should be ensured that US services in use are subject to Privacy Shield (corresponds to EU-DSGVO guidelines).
For more information on cookies and a worthwhile discussion at the end of the blog article
Note: This article makes no claim to completeness or correctness. In a concrete case always consult a law office (for example Bratschi AG in Zurich).