Switzerland weighs new digital security measures
The new proposed rules for digital service providers include ID collection and data retention.
The Swiss government has proposed a new regulation that would require digital service providers with more than 5,000 users to collect government-issued identification, retain subscriber data for six months, and, in some cases, disable encryption. The proposal, which does not require parliamentary approval, has triggered alarm among privacy advocates and technology companies worldwide.
The measure would impact services such as VPNs, encrypted email, and messaging platforms. The regulation would mandate providers to collect users’ email addresses, phone numbers, IP addresses, and device port numbers, and to share them with authorities upon request, without the need for a court order.
Swiss official Jean-Louis Biberstein emphasised that the proposed regulation includes strict safeguards to prevent mass surveillance, framing the initiative as a necessary measure to address cyberattacks, organised crime, and terrorism.
While the timeline for implementation remains uncertain, the government of Switzerland is committed to a public consultation process, allowing stakeholders to provide input before any final decision is made.
Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!