At EPFL, the processing of Personal Data is carried out under the Federal Act on Data Protection (FADP) as well as, where applicable, the European General Data Protection Regulation (GDPR).

The revised FADP came into force on the 1st September 2023.

Main goals of the revised FADP :

  1. Adapt the law to new technologies
  2. Improve transparency of data processing
  3. Strengthen data subject’s rights
  4. Aligning Swiss data protection law to the GDPR (EU)

New Ordinance on data protection (under consultation)

Revised FADP : the main changes

In this section you can find a comparative table that allow you to understand the main changes of the revised FADP as well as to find the differences between Swiss law and GDPR.

In the General page, you can find the main principles of the FADP. If you want to read the text of the law, please click here.

FADP GDPR Comparative Table [PDF]