Switzerland: Amendment to Information Security Act including cybersecurity breach reporting obligation
Progress
Scope
Timeline of events
Parliament adopts amendments to Information Security Act including cyberattack reporting obligation
On 29 September 2023, the Swiss parliament adopted the revision of the Information Security Act including a reporting obligation for cyber attacks on critical infrastructures. The obligation applies to a a list of enumerated operators of critical in…
SourceFederal Council publishes explanatory draft of amendment to Information Security Act including cyberattack reporting obligation
On 2 December 2022, the Federal Council published its explanatory draft of the proposed revision of the Information Security Act. The draft defines the reporting obligation for cyber attacks on critical infrastructures and regulates the tasks of the…
SourceConsulation closed on amendment to Information Security Act including cyberattack reporting obligation
On 14 April 2022, the Swiss Federal Council closed the public consultation on potential amendments to the Information Security Act regarding cybersecurity reporting obligations within the strategy for the National Cybersecurity Centre (NCSC). The Fe…
SourceConsulation opened on amendment to Information Security Act including cyberattack reporting obligation
On 12 January 2022, the Swiss Federal Council opened a public consultation on a proposal to introduce cybersecurity reporting obligations in the Information Security Act. The Law aims to support Switzerland's economic digital security and suggests o…
Source