When does the General Data Protection Regulation apply to companies outside the EU?

Until now, EU data protection law only applied to companies that had an establishment in the EU. The General Data Protection Regulation (GDPR) now deviates from this principle, which means that the new law potentially affects not only companies in the EU. The scope of the law also covers companies outside the EU under certain conditions. In particular, Swiss companies that are often active in the EU could be affected by the GDPR.

This cross-border applicability has led to uncertainty for many companies outside the EU.

Yves Gogniat explores this question in an article on Morethandigital and explains the different points of connection with various examples.

You can find the article here.

This article was written by RA Yves Gogniat.

If you have any questions about the GDPR and cross-border data protection, you can contact Balthasar Wicki .

Data protectionGuest author3 July 2019GDPR, Data Protection, International