Switzerland: Entry into force with grace period of Information Security Act

Entry into force with grace period of Information Security Act

On 8 November 2023, the Swiss Federal Council decreed that the Information Security Act enters into force with a grace period until 1 January 2024. The Act regulates the cybersecurity of the Swiss government institutions and contains cybersecurity rules for third parties engaging with the government. The Act is accompanied by four executive decrees regulating information security, personal safety checks, operational safety procedures, and identity management systems and directory services.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

other service provider

Implementation Level

national

Government Branch

legislature

Government Body

parliament

Complete timeline of this policy change

Hide details

2020-12-18

adopted

On 18 December 2020, the Swiss parliament adopted the Information Security Act. The Act regulates t…

2023-11-08

in grace period

On 8 November 2023, the Swiss Federal Council decreed that the Information Security Act enters into…

2024-01-01

in force

On 1 January 2024, the Information Security Act is implemented. The Act regulates the cybersecurity…

Description

Entry into force with grace period of Information Security Act

Scope

Complete timeline of this policy change