2025
Federal Administrative Court confirms practice of the FDPIC
In a ruling dated 6 October 2025, the Federal Administrative Court dismissed the appeal lodged by the Swiss citizens’ association ‘Bürgerforum Schweiz’ against a processing ban imposed by the FDPIC.
Schengen: Entry/Exit-System (EES) in operation
On 12 October 2025, the EU Entry/Exit System (EES) went into operation in the Schengen area. As an associated member of Schengen, Switzerland participates in this information system alongside 28 other European states. The FDPIC has created sample letters that data subjects can use to assert their rights.
Cookie Guidelines: updated version published
The FDPIC publishes an updated version of its cookie guidelines dated 22 January 2025, which contains specific clarifications and additions intended to improve the comprehensibility of the text and clarify practical issues.
Closure of preliminary investigation into Coop: Use of intelligent video surveillance cameras at automatic checkouts
The FDPIC is closing its preliminary investigation into the artificial intelligence surveillance cameras used by Coop Group. A formal investigation will not be opened. Examination of the case showed that data was processed in compliance with the Data Protection Act.
The FDPIC has published a factsheet on the forms that are given to patients to sign when they go to the doctor
Patients regularly have questions about the purpose and content of the forms they are given when they consult a doctor. The FDPIC has published a factsheet to remind the data protection framework and clarify its details.
FDPIC signs first MoU with foreign supervisory authority
The Federal Data Protection and Information Commissioner (FDPIC), Adrian Lobsiger, and his United Kingdom counterpart, John Edwards, have signed a Memorandum of Understanding (MoU). This is the first time that Switzerland’s data protection supervisory authority has entered into an agreement of this type.
FDPIC files criminal complaint against Add Conti GmbH for failure to cooperate in an investigation
Following several complaints from affected individuals, the FDPIC opened an investigation on 4 June 2025 into Add Conti GmbH, a company operating in the marketing sector.
FDPIC concludes investigation into voice recognition at PostFinance
The FDPIC has examined whether PostFinance AG is violating data protection regulations when using voice recognition as a means of authentication.
Ruling of the FDPIC against Cembra Money Bank AG
In its ruling of 29 January 2025, the FDPIC concluded its investigation against Cembra Money Bank AG (Cembra). In the proceedings, the FDPIC assessed the statutory time limits for processing requests for information and the information to be provided on the personal data processed.
FDPIC ruling against Inkasso-Team AG
In its decision of 28 April 2025, the FDPIC concluded its investigation into a debt collection agency that published personal data of alleged debtors on a website.
Update - Current data protection legislation is directly applicable to AI
Artificial intelligence (AI) is penetrating economic and social life in Switzerland as elsewhere. The FDPIC therefore wishes to point out that the Federal Data Protection Act, which has been in force since 1 September 2023, is directly applicable to AI-supported data processing.
Conclusion of preliminary investigation X formerly Twitter: use of personal data for training the AI Grok
The FDPIC concludes his preliminary investigation into the use of personal data for training the artificial intelligence (AI) Grok. Users of Platform X can object to their public posts being used to train AI.
The Federal Chancellery's CEBA project
The FDPIC accompanies the ‹Cloud Enabling Büroautomation› (CEBA) project from a supervisory perspective. The focus is currently on the data protection impact assessment carried out by the administration and the implementation of the measure to introduce confidentiality labels for federal administration documents (so-called labelling).
Guidelines on data breaches
The FDPIC has published guidelines on reporting data security breaches.
Guidelines published on data processing using cookies
The FDPIC has published guidelines on data processing using cookies and similar technologies. The guidelines, which are aimed at a specialist audience, describe the data protection requirements for the use of cookies and similar technologies by private controllers, with specific references to the special provisions applicable to federal bodies. The Commissioner derives these requirements from the Federal Data Protection Act (FADP SR 235.1), the Data Protection Ordinance (DPO SR 235.11), the data protection provisions of special federal legislation, as well as from the case law of the Federal Supreme Court, the relevant schools of thought and his previous supervisory practice.
Data Protection Day 2025: Data protection in the face of digital transformation
To mark International Data Protection Day, the University of Lausanne's Faculty of Law, Criminal Sciences and Public Administration organised a public conference on the theme of ‹Freedom of choice in the digital age›, in collaboration with the Federal Data Protection and Information Commissioner (FDPIC), the University of Geneva's Centre universitaire d'informatique and ThinkServices.
Schengen evaluation of Switzerland
A group of experts visited the FDPIC on January 20 2025 as part of the Schengen evaluation of Switzerland in the area of data protection. The evaluation is being carried out on the basis of the Schengen Association Agreement (SAA) between the EU and Switzerland, which has been in force since 2008. This agreement facilitates travel between Switzerland and the EU and EEA member states and improves international legal and police cooperation.
