The EU has coughed, and Switzerland has caught a cold. In July, the European Court of Justice (EJ) ruled in ‘Data Protection Commissioner v Facebook Ireland and Max Schrems’ – or ‘Schrems II’ – that US data collection policies are not compatible with EU citizens’ rights under the General Data Protection Regulation (GDPR). This invalidated the EU-US Privacy Shield that had governed data transfers between the EU and US.
Now, the Swiss Federal Data Protection and Information Commissioner (FDPIC) has followed in the ECJ’s footsteps, ruling that the US should not feature on the list of third countries with ‘adequate’ protections in place for Swiss citizens’ data. The FDPIC now regards US protections as ‘insufficient’. Accordingly, the Swiss-US Privacy Shield (designed to mirror the EU-US agreement) has effectively been invalidated in all but name.
This development poses inevitable questions for organisations in Switzerland regarding privacy and its status as a core operational capability. Companies should now look to, at the least, carry out an audit of their data transfer protocols. In worst-case scenarios, organisations may have to drastically change the way they handle data, potentially even pausing certain high risk data transfers while assessing the best route forward. There is a lot at stake if this process is not handled properly.
Click here to read the article.
Experts on the Stand: Brazilian Arbitration Between Judicial Tradition and International Practice
April 30, 2026
In this article, Managing Directors Leonardo Florencio and Rodrigo Mattos analyze why expert evidence in Brazilian arbitration often departs from international best practices, how excessive reliance on tribunal-appointed experts increases cost and delay, and what the ICC Brazil Task Force recommends to improve efficiency and credibility.
Content Compliance and Digital Content Diligence (NSFW and Platform Risks)
April 29, 2026
In this article, Managing Director Rahul Gosain and Director Vikesh Bhartee examine why content compliance and digital content diligence have become transaction-critical in digital media investments, how gaps around NSFW content, licensing, and moderation create regulatory and valuation risk, and what investors should assess before those risks surface post-close.
Complex Mass Tort Settlement Administration: Core Principles
April 28, 2026
The first installment in the Complex Mass Tort Settlements Series, this introductory article outlines the core principles behind effective mass tort settlement administration. It explains why these foundational practices remain essential as programs grow more complex and technology‑driven.
Greece: a regulatory compliance and corporate governance checklist for investors and boards in 2026
April 23, 2026
In recent years, Greece has introduced a series of new laws and regulatory amendments that have, collectively, raised the bar for governance maturity in the country. This has been driven both by domestic priorities and by local implementation of stricter EU level directives in areas such as anti-bribery and anti-corruption, anti-money laundering (AML) and sanctions.
