Swiss Federal Act on Data Protection (FADP)
Switzerland's revised Federal Act on Data Protection came into force in September 2023. If your organisation processes personal data in or affecting Switzerland, you need to understand your obligations.
This course provides comprehensive guidance on the Swiss FADP (revFADP), covering fundamental concepts, data controller obligations, and compliance requirements for organisations operating in Switzerland.
Whether you're a data protection officer, compliance manager, or business professional handling Swiss personal data, this course will help you understand and meet your legal obligations.
Why learn about the Swiss FADP?
- Legal compliance — understand your obligations under Switzerland's data protection law
- Avoid criminal sanctions — the FADP can impose fines up to CHF 250,000 on individuals
- International data transfers — learn the rules for transferring data to and from Switzerland
- Understand the differences between FADP and GDPR if you operate in both jurisdictions
- Build practical knowledge of DPIAs, record-keeping, and security requirements
Course features
Comprehensive Coverage
60-75 minutes of in-depth content covering all aspects of the revised FADP from fundamentals to enforcement.
Current & Authoritative
Based on the revised FADP (September 2023) and guidance from the FDPIC.
Practical Focus
Learn how to conduct DPIAs, maintain records, and implement security measures that meet FADP requirements.
Swiss-Specific
Focused on Swiss law, including the unique aspects like criminal liability for individuals and the role of the FDPIC.
Learning with us
Course information
Learning outcomes
- Understand the scope and application of the revised FADP
- Know the key concepts: data controller, processor, personal data, legal basis
- Understand data subject rights under Swiss law
- Apply the nine key obligations for data controllers
- Know when and how to conduct a Data Protection Impact Assessment
- Implement appropriate security measures and record-keeping
- Understand FDPIC enforcement and potential sanctions
Key topics covered
- FADP fundamentals: Scope, definitions, and key differences from the 1992 law
- Data subject rights: Access, rectification, deletion, data portability
- Controller obligations: The nine key compliance requirements
- DPIAs: When required and how to conduct them
- Security & records: Technical measures and documentation requirements
- Enforcement: FDPIC powers and criminal sanctions
This course is recommended for
- Data Protection Officers (DPOs)
- Compliance managers and legal teams
- Business professionals handling Swiss personal data
- IT and security professionals
- Anyone responsible for FADP compliance
Prerequisites
None required. This course is designed to be accessible to anyone needing to understand Swiss data protection law, regardless of prior knowledge.
Course content
This section introduces data protection in Switzerland. We'll cover why data protection matters in the Swiss economy, explore the development of Swiss data protection law, and explain the key changes brought by the 2023 revision.
Lessons
- Welcome to Swiss FADP Course (3 min)
- The Importance of Data Protection in Switzerland (4 min)
- Development of Swiss Data Protection Law (5 min)
This section covers the fundamental concepts of the FADP. We'll define key terms like data controller and processor, explain what constitutes personal data under Swiss law, and detail the rights that data subjects have.
Lessons
- Key Concepts of the FADP (7 min)
- Rights of Data Subjects (7 min)
Here we examine what the FADP requires of data controllers. We'll cover the nine key obligations, when you need to conduct a Data Protection Impact Assessment (DPIA), and how to work with the FDPIC.
Lessons
- The Nine Key Obligations (8 min)
- Data Protection Impact Assessments (8 min)
This section focuses on practical compliance. We'll explain the security measures required by the FADP and the documentation you must maintain.
Lessons
- Data Security Measures (6 min)
- Record-Keeping Requirements (6 min)
We'll examine how the FADP is enforced. You'll learn about the role of the Federal Data Protection and Information Commissioner (FDPIC) and the sanctions for non-compliance.
Lessons
- The Role of the FDPIC (5 min)
- Sanctions for Non-Compliance (5 min)
In the final section we'll summarise the key points, provide resources for staying current with FADP developments, and discuss how to build a data protection culture in your organisation.
Lessons
- Course Summary and Key Takeaways (3 min)
- Staying Up-to-Date with FADP (2 min)
- Developing a Data Protection Culture (3 min)
- End of course assessment
How it works
Buy course seats
Purchase online using your credit or debit card. You'll be able to login immediately and start learning yourself, or invite your team members to join you.
Start learning
Work through the video lessons and interactive quizzes. On completion of the course you'll be issued with a certificate.
Stay compliant
Use your certificate as evidence of FADP training for compliance and audit purposes. We recommend annual refresher training.
What's included
Training
- Distraction-free online learning platform
- 14 video lessons across 6 sections
- Section quizzes and final assessment
Updates
- Access to all course material updates for the length of your access period
Certification
- Certificate on completion
- Valid for 12 months
- 75% pass mark required
Course FAQs
Yes, on completion of the course you will be issued with a digital certificate. It will be issued by our team shortly after completion of all modules including the end of course quiz. You can add this to your LinkedIn profile.
Yes, you can purchase multiple seats for your team. Simply select the number of seats you need during checkout. Each team member will receive their own login credentials and can complete the course independently.
Yes, we offer a 14-day 100% money-back guarantee. If you are not satisfied with the course for any reason, simply contact us within 14 days of purchase for a full refund.
The revised Federal Act on Data Protection (revFADP) came into force on 1 September 2023. It replaced the original 1992 law and brought Switzerland's data protection framework in line with modern standards.
The FADP applies to private persons and federal bodies that process personal data. It has extraterritorial scope, meaning it can apply to organisations outside Switzerland if their data processing has effects in Switzerland.
The FADP shares many concepts with the EU GDPR but has some differences. For example, the FADP has criminal sanctions against individuals (not just organisations), and some obligations have different thresholds. This course covers the key FADP requirements.
The Federal Data Protection and Information Commissioner (FDPIC) is Switzerland's independent authority responsible for supervising compliance with the FADP. They provide guidance, investigate complaints, and can take enforcement action.
Unlike the GDPR, the FADP primarily imposes criminal sanctions on individuals rather than organisations. Fines of up to CHF 250,000 can be imposed on the responsible individuals for intentional violations of certain provisions.
Included in PLUS