2025

In a ruling dated 6 October 2025, the Federal Administrative Court dismissed the appeal lodged by the Swiss citizens’ association ‘Bürgerforum Schweiz’ against a processing ban imposed by the FDPIC.

On 12 October 2025, the EU Entry/Exit System (EES) went into operation in the Schengen area. As an associated member of Schengen, Switzerland participates in this information system alongside 28 other European states. The FDPIC has created sample letters that data subjects can use to assert their rights.

The FDPIC publishes an updated version of its cookie guidelines dated 22 January 2025, which contains specific clarifications and additions intended to improve the comprehensibility of the text and clarify practical issues.

The FDPIC is closing its preliminary investigation into the artificial intelligence surveillance cameras used by Coop Group. A formal investigation will not be opened. Examination of the case showed that data was processed in compliance with the Data Protection Act.

Patients regularly have questions about the purpose and content of the forms they are given when they consult a doctor. The FDPIC has published a factsheet to remind the data protection framework and clarify its details.

The Federal Data Protection and Information Commissioner (FDPIC), Adrian Lobsiger, and his United Kingdom counterpart, John Edwards, have signed a Memorandum of Understanding (MoU). This is the first time that Switzerland’s data protection supervisory authority has entered into an agreement of this type.

Following several complaints from affected individuals, the FDPIC opened an investigation on 4 June 2025 into Add Conti GmbH, a company operating in the marketing sector.

The FDPIC has examined whether PostFinance AG is violating data protection regulations when using voice recognition as a means of authentication.

In its ruling of 29 January 2025, the FDPIC concluded its investigation against Cembra Money Bank AG (Cembra). In the proceedings, the FDPIC assessed the statutory time limits for processing requests for information and the information to be provided on the personal data processed.

In its decision of 28 April 2025, the FDPIC concluded its investigation into a debt collection agency that published personal data of alleged debtors on a website.

Artificial intelligence (AI) is penetrating economic and social life in Switzerland as elsewhere. The FDPIC therefore wishes to point out that the Federal Data Protection Act, which has been in force since 1 September 2023, is directly applicable to AI-supported data processing.

The FDPIC concludes his preliminary investigation into the use of personal data for training the artificial intelligence (AI) Grok. Users of Platform X can object to their public posts being used to train AI.

The FDPIC accompanies the ‹Cloud Enabling Büroautomation› (CEBA) project from a supervisory perspective. The focus is currently on the data protection impact assessment carried out by the administration and the implementation of the measure to introduce confidentiality labels for federal administration documents (so-called labelling).

The FDPIC has published guidelines on reporting data security breaches.

The FDPIC has published guidelines on data processing using cookies and similar technologies. The guidelines, which are aimed at a specialist audience, describe the data protection requirements for the use of cookies and similar technologies by private controllers, with specific references to the special provisions applicable to federal bodies. The Commissioner derives these requirements from the Federal Data Protection Act (FADP SR 235.1), the Data Protection Ordinance (DPO SR 235.11), the data protection provisions of special federal legislation, as well as from the case law of the Federal Supreme Court, the relevant schools of thought and his previous supervisory practice.

To mark International Data Protection Day, the University of Lausanne's Faculty of Law, Criminal Sciences and Public Administration organised a public conference on the theme of ‹Freedom of choice in the digital age›, in collaboration with the Federal Data Protection and Information Commissioner (FDPIC), the University of Geneva's Centre universitaire d'informatique and ThinkServices.

A group of experts visited the FDPIC on January 20 2025 as part of the Schengen evaluation of Switzerland in the area of data protection. The evaluation is being carried out on the basis of the Schengen Association Agreement (SAA) between the EU and Switzerland, which has been in force since 2008. This agreement facilitates travel between Switzerland and the EU and EEA member states and improves international legal and police cooperation.