Switzerland: Information Security Act

Progress

Current status

in force

01 Jan 2024 in force

08 Nov 2023 in grace period

18 Dec 2020 adopted

Scope

Implementers

Switzerland

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

other service provider

Government Branch

legislature

Government Body

parliament

Implementation Level

national

Timeline of events

01 Jan 2024

in force

Implemented Information Security Act

On 1 January 2024, the Information Security Act is implemented. The Act regulates the cybersecurity of the Swiss government institutions and contains cybersecurity rules for third parties engaging with the government. The Act is accompanied by four …

Source

Event type law

Action type implementation

Government branch legislature

Government body parliament

08 Nov 2023

in grace period

Entry into force with grace period of Information Security Act

On 8 November 2023, the Swiss Federal Council decreed that the Information Security Act enters into force with a grace period until 1 January 2024. The Act regulates the cybersecurity of the Swiss government institutions and contains cybersecurity r…

Source

Event type law

Action type in force with grace period

Government branch legislature

Government body parliament

18 Dec 2020

adopted

Adopted Information Security Act

On 18 December 2020, the Swiss parliament adopted the Information Security Act. The Act regulates the cybersecurity of the Swiss government institutions and contains cybersecurity rules for third parties engaging with the government.

Source

Event type law

Action type adoption

Government branch legislature

Government body parliament

Progress

Scope

Timeline of events

Implemented Information Security Act

Entry into force with grace period of Information Security Act

Adopted Information Security Act

Related changes

Switzerland: Amendment to Information Security Act including cybersecurity breach reporting obligation