The data protection laws in the EU and Switzerland have undergone fundamental changes. The new EU law (GDPR) entered into force on 25 May 2018, while the revised Swiss data protection law is expected to enter into force in 2022. The changes aim to raise awareness regarding data protection in society by promoting a more considerate handling of one’s own and other’s personal data. In order to bring about this change, data subjects are granted more rights than before and extensive information as well as stricter documentation requirements are introduced. Violations of data protection laws are now sanctioned with drastic fines. In addition, certain violations can also lead to personal liability. Further information on the revised Swiss Federal Data Protection Act can be found in our newsletter (available in German only).