The Data Processor Privacy Notice is a crucial document required for organizations processing personal data on behalf of others under Swiss law. This document becomes necessary when an entity acts as a data processor, handling personal data according to the instructions of data controllers. The notice must comply with the Swiss Federal Data Protection Act (FADP/DSG) and should address key aspects such as processing purposes, security measures, and data subject rights. While primarily focused on Swiss legal requirements, the notice often needs to consider international data protection standards, particularly when handling cross-border data transfers. The document serves both as a compliance tool and as a transparency mechanism, helping processors meet their obligations while providing clear information to controllers and data subjects about their processing activities.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
1. Introduction: Identifies the data processor and explains the purpose of the privacy notice
2. Scope of Application: Defines who the notice applies to and what activities it covers
3. Definitions: Key terms used throughout the notice, aligned with Swiss FADP terminology
4. Role as Data Processor: Clear explanation of the organization's role as a data processor and its relationship with data controllers
5. Types of Personal Data Processed: Categories of personal data that the processor typically handles
6. Processing Purposes: Description of the purposes for which personal data is processed on behalf of controllers
7. Legal Basis for Processing: Reference to the contractual basis and legal grounds for processing activities
8. Data Security Measures: Overview of technical and organizational measures implemented to protect personal data
9. Sub-processors: Information about the use of sub-processors and the process for engaging them
10. International Data Transfers: Information about cross-border data transfers and safeguards in place
11. Data Subject Rights: Explanation of how data subject requests are handled when received by the processor
12. Contact Information: Details of how to contact the processor and their data protection officer if applicable
1. Specific Industry Compliance: Additional section for processors in regulated industries (e.g., healthcare, financial services)
2. Children's Data Processing: Required if the processor handles personal data of children
3. Special Categories of Data: Required if processing sensitive personal data as defined under Swiss law
4. Data Retention Periods: Detailed retention schedules when processing involves specific retention requirements
5. Automated Decision Making: Required if the processor employs automated decision-making or profiling
6. Cookie Policy Integration: Required if the processor uses cookies or similar tracking technologies
7. Local Representative: Required if the processor needs a representative in specific jurisdictions
1. Technical and Organizational Measures: Detailed description of security measures and controls implemented
2. Sub-processor List: Current list of approved sub-processors and their processing activities
3. Data Processing Activities: Detailed inventory of processing activities performed as a processor
4. Security Incident Response Plan: Procedures for handling and reporting data breaches
5. Standard Contractual Clauses: If applicable, for international data transfers
6. Certification and Compliance Documents: Copies of relevant certifications and compliance attestations
Find the exact document you need
Workforce Privacy Notice
A Swiss law-compliant privacy notice outlining how an organization handles employee personal data under the Federal Data Protection Act (FADP/DSG).
Download
Notice Of Personal Data Processing
A Swiss law-compliant notice detailing how an organization collects, processes, and protects personal data under the revFADP/nDSG 2023.
Download
Privacy Notice For Employees
A Swiss law-compliant notice detailing how an organization handles employee personal data under the FADP/DSG framework.
Download
Privacy Information Notice
A Swiss law-compliant document that explains how an organization handles personal data under the Federal Data Protection Act.
Download
Data Processor Privacy Notice
A Swiss law-compliant privacy notice for data processors, outlining their obligations and procedures when processing personal data on behalf of controllers under FADP/DSG.
Download
Personal Data Notice
A Swiss law-compliant notice detailing an organization's personal data processing practices under FADP 2023, outlining data collection, usage, and protection measures.
Download
Privacy Notice Statement
A Swiss law-compliant privacy notice outlining an organization's personal data handling practices under FADP requirements.
Download
External Privacy Notice
A Swiss law-compliant privacy notice detailing an organization's personal data processing practices and data subject rights under FADP/DSG.
Download
Data Collection Notice
A Swiss law-compliant notice informing individuals about how their personal data is collected, processed, and protected under the FADP/nFADP.
Download
ұԾ’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; ұԾ’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)