Services for NGOs
The CAGI assists international non-governmental organizations (NGOs) established or wishing to set up in the Geneva region.
- Home
- Benefits
- Services for NGOs
- Data protection
Data protection
New Federal Act on Data Protection (nFADP)
In Switzerland, data protection is governed primarily by the new Federal Data Protection Act (nLPD) and its ordinance (OPDo), which came into force on September 1, 2023.
This legal framework establishes the general principles and obligations applying to the processing of personal data in Switzerland, with the aim of protecting the personality and fundamental rights of the people whose data is processed. All companies must comply, including NGOs.
All companies must comply, including NGOs.
The nFADP introduces the following eight major changes for businesses.
- Only data of natural persons, and not those of legal persons, are now covered.
- Genetic and biometric data fall under the definition of sensitive data.
- The principles of “Privacy by Design” and “Privacy by Default” are introduced. As its name implies, the principle of “Privacy by Design” requires developers to integrate the protection and respect of users’ privacy into the very structure of the products or services that collects personal data. The principle of “Privacy by Default” ensures the highest level of security as soon as the products or services are released, by activating by default, i.e. without any intervention from users, all the measures necessary to protect data and limit their use. In other words, all software, hardware and services must be configured to protect data and respect the privacy of users.
- Keeping a register of processing activities is now mandatory. However, the ordinance allows exemptions for SMEs whose data processing presents limited risk of harm to the data subject.
- Prompt notification to the Federal Data Protection and Information Commissioner (FDPIC) is required in the event of a data security breach.
- The concept of profiling (i.e. the automated processing of personal data) is now part of the law.
Companies that have already complied with the EU General Data Protection Regulation (GDPR) have minimal changes to make.
The association “SwissPrivacy.Law” has published a comparison table between the nFADP and the EU Regulation.
TO FIND OUT MORE:
- Federal Data Protection Act (DPA)
- Data Protection Ordinance (DPO)
- FAQ Data protection law (Federal Office of Justice, 2024)
- Federal Data Protection and Information Commissioner (FDPIC): data collection and use within an association
- ZEWO: guide to implementing the new Data Protection Act (2024)
- proFonds: tools to facilitate implementation of data protection directives (2022)
- Data Protection: a guide for Charities and Non-governmental Organisations (Thomson Reuters Foundation, 2018)
- CNIL: RGPD awareness guide for associations (2021, in French)
Other useful information for NGOs
Annual legal requirements
VAT
Intellectual property
Pro bono legal assistance
Registration with the Register of commerce
CAGI services
for NGOs and Permanent Missions
Contact
By appointment only: Monday to Friday from 9 a.m. to 12 p.m. / 2 p.m. to 4:30 p.m.
La Pastorale: Route de Ferney 106, 1202 Genève
Access by public transports (TPG): Line 5: stop Intercontinental; lines 8, 20, 22, 60: arrêt Appia. No parking on site.
Founded by the Swiss Confederation and the Republic and Canton of Geneva, the International Geneva Welcome Centre is the single entry point for the support and integration of employees of International Geneva and their families, NGOs and visiting delegates.