Much has already been written about the forthcoming entry into force of the European General Data Protection Regulation (GDPR) in May 2018.
While large companies have been working for months towards compliance with GDPR, many Swiss SMEs are still unsure about what to do. They perceive the volume of legal requirements and severe penalties to be so far removed from their daily operational reality that they prefer to "wait and see" before tackling the issue.
How should a SME prepare for change, and how does GDPR compare with the revised Swiss Federal Data Protection Act (FADP) expected to come into effect in 2019?
Me Sylvain Métille, Data protection and privacy lawyer and partner at HDC in Lausanne answers Navixia's very pragmatic questions (article in French).