Close
What would you like to look for?
Site search
Search filters
Microsoft Cloud Contracts: Working Around the Missing Signature

Microsoft Cloud Contracts: Working Around the Missing Signature

18 September 2024

Numerous Swiss companies as well as public organizations rely on Microsoft's cloud services. In addition to the basic contract, the Microsoft Customer Agreement (MCA), the "Amendment for Switzerland regarding Microsoft Products...

EU Data Act, CRA, DSA, AI Act, etc.: Five-minute training videos

EU Data Act, CRA, DSA, AI Act, etc.: Five-minute training videos

11 September 2024

Which law applies where and how? What needs to be done? Seven short training videos

Some like to refer to the "Blue Wall" of digital regulation: As part of its "Digital Agenda", the EU is enacting more and more laws on the...

Part 22: Guidelines for using artificial intelligence in financial institutions (FINMA)

Part 22: Guidelines for using artificial intelligence in financial institutions (FINMA)

28 August 2024

Many banks, insurance companies and other Swiss financial institutions are currently working on projects involving the use of artificial intelligence – some of which have been running for years, while others are new. While the...

Swiss-US DPF: How to transfer data to the US with and without it

Categories: Data & Privacy, Blog

Swiss-US DPF: How to transfer data to the US with and without it

16 August 2024

Switzerland follows suit with a one-year delay after the EU Swiss professional and official secrecy not affected Step-by-step guidance for practice We recommend still entering into the EU SCC as a fallback One can continue...

The Cloud and Professional Secrecy: A Sample Clause

The Cloud and Professional Secrecy: A Sample Clause

14 August 2024

Anyone who is obliged to maintain professional or official secrecy must take additional precautions in their contract when commissioning a cloud provider or other IT provider, especially if the provider has a foreign nexus.

We...

Part 21: The right of access to large language models

Categories: Data & Privacy, Blog

Part 21: The right of access to large language models

30 July 2024

If large language models contain or generate personal data, sooner or later data subjects will want to know about it. But how should access requests with regard to personal data contained in an LLM be answered in a compliant...

Part 20: Risk-based approach: Not all AI applications harbour high risks

Categories: Data & Privacy, Blog

Part 20: Risk-based approach: Not all AI applications harbour high risks

24 July 2024

It is often said that the use of AI comes with risks. This is true and we ourselves have published a tool that can be used to assess such AI risks and which is enjoying some popularity. However, where AI applications do not...

Part 19: Language models with and without personal data

Category: Data & Privacy

Part 19: Language models with and without personal data

17 July 2024

We have explained the technical aspects of a large language model in part 17 of our blog. But what conclusions can we draw from this in terms of data protection? Does an LLM contain personal data within the meaning of the GDPR and...

Part 18: The most important compliance requirements for AI

Category: Data & Privacy

Part 18: The most important compliance requirements for AI

21 May 2024

The use of artificial intelligence raises numerous compliance issues. We think of data protection, copyright and the AI Act, as well as other topics such as non-discrimination and explainability. We have summarised the 18 most...

Part 17: What is inside an AI model and how it works

Category: Data & Privacy

Part 17: What is inside an AI model and how it works

7 May 2024

If we want to apply the current rule of law to artificial intelligence, especially in the field of generative AI, then we need to understand what the AI models, which are the heart of an AI system, are all about. This...