GDPR & Swiss revFADP
The SCMC data protection assessment evaluates your implementation of EU GDPR and the Swiss Federal Act on Data Protection (revFADP). 107 control questions, 10 domains — choose your scope: EU, CH or both.
Structured data protection compliance review, identify gaps, and prioritize measures — for EU, CH and combined use cases.
Simple, transparent pricing
Monthly
CHF 175
/ month
Annual
CHF 1'750
≈ CHF 146 / month
2 months free
The data protection assessment is designed for organizations subject to EU GDPR, the Swiss Federal Act on Data Protection (revFADP), or both. At the start, you choose your scope: EU-focused, CH-focused, or combined (recommended for most Swiss SMEs with EU business relationships). The assessment evaluates 107 control questions across 10 domains on a maturity scale of 0–4.
The Challenge
You know the GDPR and revFADP requirements, but it's hard to assess what's already fulfilled and where the biggest gaps are. A realistic baseline is missing.
Our Solution
Our platform provides a clear, traceable overview of your data protection maturity through 107 structured control questions — organized by domain and priority.
Assess EU and Swiss requirements at the same time — without two separate processes. The combined template covers both frameworks in a single pass.
Three selectable scope templates: EU-focused, CH-focused, or combined. Irrelevant questions are automatically excluded.
107 control questions, 10 domains, 35 sub-domains — for a complete and traceable evaluation of your data protection maturity.
Visual evaluation shows at a glance where action is needed and which areas are already well-established.
Assessments, comments, and evidence in one place — as a basis for internal reviews, DPOs, and external audits.
The assessment delivers a prioritized list of actions based on maturity level — so you know exactly where to start.
Choose your scope (EU, CH, or combined) at the beginning and start the assessment immediately. 107 control questions in 10 domains — structured, evaluable, and repeatable.
The SCMC data protection assessment brings clarity: structured, traceable, and directly online — without external consultants.
Yes. The assessment includes three selectable scope templates: EU (purely EU-focused), CH (Swiss revFADP), and EU+CH (combined). The combined template is recommended for most Swiss SMEs with EU business relationships. Depending on your selection, irrelevant questions are automatically marked as 'not applicable'.
The full assessment (EU+CH scope) contains 107 control questions organized into 10 domains and 35 sub-domains. In EU-only or CH-only scope, 3 out-of-scope questions are automatically excluded; the remainder is identical.
The assessment is designed for Swiss SMEs, organizations processing EU personal data, and any company that wants to systematically review and document compliance with GDPR and/or revFADP — regardless of size or industry.
Yes. The assessment provides a traceable, documented baseline that DPOs can use as a working basis, evidence for supervisory authorities, and as a foundation for the record of processing activities.
It depends on the organization's documentation status. The assessment can be completed step-by-step and distributed across multiple team members — progress is always saved.
You receive a maturity overview per domain (0–4), a gap list with prioritized action items, and exportable evidence documentation — as a basis for internal improvements, DPO reviews, and external audits.
No. The assessment is a digital self-evaluation tool. It provides a structured, documented baseline — not an official certificate. SCMC is not a supervisory authority.
