GRC / data protection Structure and main requirements of the Swiss LPD

As is known, on September 25, 2020, the Federal Data Protection Act (LPD) of Switzerland was enacted.

The LPD, similarly to the GDPR, is structured on three levels: chapters, sections and single articles.

There are many correlations between the requirements of the LPD and the requirements of the GDPR such as: purpose and field of application, definition of personal data and processing, the figures involved (data subject, data controller, data processor), the applicable principles to the processing, the rights of the data subject, privacy by design and by default, the obligations of data controllers and processors, the protection of personal data, the role of the  data protection consultant.

How to manage compliance with the requirements of the LPD?

The adoption of a GRC (Governance, Risk Management, Compliance) approach based on the main ISO standards can be particularly useful…see how in our next article.

#GDPR #privacy #dataprotection #EU #Switzerland #LPD #GRC #governance #compliance #ISO37301 #riskmanagement #ISO31000 #PIA #ISO29134 #informationsecurity #ISO27001 #businesscontinuity #ISO22301 #Itservices #ISO200001