Cross-border disclosure

In Swiss data protection law, cross-border disclosure covers transfers abroad and remote access from another country, including cloud hosting, group access, support services and international platforms. The controller must assess whether the destination ensures adequate protection. If not, suitable safeguards are usually needed, such as contractual clauses, binding internal rules or another recognised mechanism, unless an exception applies. The analysis should consider onward transfers, government access risks, processor chains and transparency towards data subjects. EU rules may apply in parallel in cross-border settings.