On Wednesday, 28 January 2026, our webinar on „Data protection in primary schools“ took place. Data protection has long been more than just a compulsory programme in schools. The data protection advisor plays a key role in this. He or she advises staff and school administration on all data protection issues, acts as an interface with the cantonal data protection officer and ensures that all data protection regulations are complied with.

The 45-minute webinar gave participants an overview of what responsibilities are important, what to look out for and how to implement effective protection in your school.

Speakers:
- Volker Dohr
- Micha Strässler
- Marion Boos

Topics at a glance:

- Data protection
- How Impunix provides targeted support to schools
- Types of personal data
- Principles of data processing and the law
- Information security - differentiation from data protection - storage, archiving and access to information
- Criminal liability
- Data processing in everyday school life

On Wednesday, 21 January 2026, we held our webinar on the topic of „Assessing negative comments and reviews with legal certainty“. Negative feedback on social media and review platforms is increasingly presenting companies with legal and communication challenges. The webinar showed what criticism is permissible, where the legal boundaries lie and how companies can respond professionally and effectively.

In 45 minutes, the participants were given a practical overview of how negative comments should be legally categorised, when action is required and which response options are sensible and permissible. They were also shown how Impunix can provide companies with targeted support in dealing with negative reviews.

Speakers:
- Volker Dohr
- Dr Marc Schwenninger

Topics at a glance:

- Data protection and advertising defence claims
- Delete - Report - Tolerate
- Google & Practice
- Advertising with Google reviews
- Examples from practice

On Wednesday, 10 December 2025, the second date of our webinar "Information security in schools" took place. Legal requirements, digital school development projects and the protection of sensitive data presented schools with new challenges. The webinar showed which responsibilities were central, what had to be taken into account and how effective protection could be implemented in schools.

In 45 minutes, the participants were given an overview of the legal requirements for school communities, the requirements of the data protection authority (DPA) and the roles and responsibilities of information security and data protection officers (ISA and DPO). They were also shown how Impunix can provide targeted support to schools.

Speakers:
- Marion Boos, Head of Information Security Schools impunix AG
- Volker Dohr, lawyer, CEO impunix AG
- Micha Strässler, Business IT Specialist, COO impunix AG

Topics at a glance:

- This is Impunix
- Legal requirements
- Requirements of the data protection authority (DPA)
- Roles of the Information Security Officer (ISO) and Data Protection Advisor (DPO)
- Information security risks in the education sector
- How Impunix provides targeted support to schools

The webinar "Information security in schools" took place on Wednesday, 5 November 2025. Legal requirements, digital school development projects and the protection of sensitive data presented schools with new challenges. The webinar showed which responsibilities were central, what needed to be taken into account and how effective protection could be implemented in schools.

In 45 minutes, the participants were given an overview of the legal requirements for school communities, the requirements of the data protection authority (DPA) and the roles and responsibilities of information security and data protection officers (ISA and DPO). They were also shown how Impunix can provide targeted support to schools.

Speakers:
- Marion Boos, Head of Information Security Schools impunix AG
- Volker Dohr, lawyer, CEO impunix AG
- Micha Strässler, Business IT Specialist, COO impunix AG

Topics at a glance:

- This is Impunix
- Legal requirements
- Roles of the Information Security Officer (ISO) and Data Protection Advisor (DPO)
- How Impunix provides targeted support to schools

The webinar on "Fit for VISAR - achieving information security goals" took place on 1 October 2025. Using the example of the "Volkswagen Information Security Assessment Retail" (VISAR), based on TISAX and ISO27001, it was shown how information security can be managed effectively. The standard is universally transferable to other sectors and is therefore relevant for everyone.

In 45 minutes, the individual requirements of VISAR were explained in a practical way and a clear roadmap for implementation by the end of 2027 was presented - up to the possible assumption of the role of the information security officer (ISV or CISO).

Speakers:
- Volker Dohr, lawyer, CEO impunix AG
- Micha Strässler, Business IT Specialist, COO impunix AG

Topics at a glance:

- News from cyberspace
- Top measures of the month
- VDA Information Security Assessment (ISA)
- VISAR Abstract

On 3 September 2025, the webinar on the topic of "Information disclosure silence legal framework for companies" took place. We showed which legal requirements actually exist for requests for information and disclosure, how to implement them correctly and in which cases restraint is required.

Speakers:
- Volker Dohr, lawyer, CEO impunix AG
- Stefanie Meierhofer, Associate Data Protection Consultant impunix AG

Topics at a glance:

- Art. 25 FADP Right to information
- Current case law in Switzerland
- Information to police and authorities
- Information to external parties in day-to-day work
- Dos & don'ts regarding the right to information
- Sample answers

The webinar on "Current cyber threats for SMEs and how you can protect yourself" took place on 9 July 2025. We showed which threats are currently particularly relevant and what specific measures you should take now.

Speakers:
- Bjoern Hering, Senior Penetration Tester at netzsicher GmbH
- Volker Dohr, lawyer, CEO impunix AG
- Micha Strässler, Business IT Specialist, CDO impunix AG

Topics at a glance:

- Overview of information security
- Current cyberattack scenarios
- E-learning topics for your company
- 5 Recommendations for ad hoc risk limitation
- Summary and links on the topic

The webinar on "Marketing in the automotive industry - print, social and online 2.0" took place on 4 June 2025. If you want to win customers today, there is no way around digital marketing measures. But for small and medium-sized companies in particular, the question arises: What is still permitted and what is tricky in terms of data protection? In this Impunix webinar, our experts guided you through the jungle of consent, legitimate interest and legal grey areas. They showed how advertising measures can be designed in compliance with the GDPR without losing impact.

Speakers:
- Dr Marc Schwenninger, Attorney at Law, Of Counsel impunix
- Tahir Pardan, Head of Legal & Policy at AGVS
- Volker Dohr, Lawyer, CEO impunix AG/span>

Topics at a glance:
- When is telephone or electronic contact permissible?

- Obtaining consent or is a legitimate interest sufficient?

- What do I need to look out for in newsletters, forms, etc.?

- What really applies to cookies, tracking and content banners?

- How can I legally protect my website and avoid typical warning risks?

- And how do I advertise on social media without falling into the legal trap?

The webinar on "Video surveillance - indoors and outdoors - what is permitted?" took place on 4 June 2025. In our webinar, we shed light on what needs to be considered so that video recordings are permissible and usable.

Speakers:
- Stefanie Meierhofer Associate Data Protection Consultant impunix
- Volker Dohr, Lawyer, CEO impunix AG/span>

Topics at a glance:
- Legal framework conditions
- Federal Data Protection and Information Commissioner
- Current decisions by authorities
- Practical examples
- Video recordings indoors
- Live vs. recording
- Technical and organisational measures
- Information sign

Speakers: RA Volker Dohr (Impunix), Micha Strässler (Impunix) and Thomas Grenacher (Büro für Erfrischung)

Cookie banners in Switzerland: What is really necessary?
On 22 January 2025, the Federal Data Protection and Information Commissioner (FDPIC) published guidelines on cookies - with parallels to EU regulations. But what does this actually mean for companies in Switzerland? How should the new guidelines be interpreted and what requirements now apply to cookie banners? In our webinar, we clarify the most important points and provide practical recommendations for implementation.

Speakers: Micha Strässler (impunix AG), Volker Dohr (impunix AG)

About this webinar: Have you received a request for information or deletion - and don't know exactly how to respond? In our webinar, we will show you step by step how you can process these requests in a legally compliant and efficient manner.

You will also receive a checklist for requests for information and cancellation and 2. sample responses for the most common scenarios (e.g. approval, rejection, extension of the processing deadline) below the video.

Speakers: Volker Dohr (Impunix) and Tahir Pardhan (AGVS)
Free participation! Register now and secure your place!
About this webinar: This webinar will help you to understand why AI needs to be regulated in your company and what regulations you need to put in place.

Legitimate use of AI in the company
Principles, AI register - and notes and a guideline.

There are already various laws that regulate the use of AI in companies, for example the Data Protection Act, labour law and copyright law. Therefore, every company that uses AI must have rules for selecting and using the tools. In our webinar, we will discuss the most important aspects of the tools, current legislation and show you specifically what your company's guidelines should contain.

You will then receive a checklist for management and brief instructions for employees.

Secure your place now and stay on the safe side!

On 31 January 2025, a webinar was held on the topic "New data protection policy of Renault (FR)". Roman Rütsche and Stefanie Meierhofer from impunix AG explained the new data protection directive from Renault, which is now mandatory for businesses. Practical explanations were given and a clear presentation made it possible to show what measures need to be taken and where the corresponding provisions of the directive can be found in the RSSA licence holder's kit.

Aide à la mise en œuvre We propose the registration of the webinar, an information sheet (handout) summarising the directive of 37 pages in one page and an overview, including a list of obligations and general roles, in order to facilitate the implementation for traders. You will find them below the video.

On 14 January 2025, the webinar on "New data protection guidelines from Renault (DE)" took place. Stefanie Meierhofer and Volker Dohr from impunix AG explained Renault's new data protection guidelines, which are now also binding for retailers. It was explained in a practical way and a clear presentation was used to show what measures need to be taken and where the relevant requirements of the directive can be found in the RSSA dealer kit.

Implementation aid We offer the recording of the webinar, a leaflet (handout) summarising the 37-page directive on one page, and an overview including a checklist for the general obligations and roles to make implementation easier for retailers. You will find these linked below the video.

The topics covered in the overview have been labelled with chapters in the recording for easier navigation.

1. Data protection requirements at a glance
2. Overview of the documents relating to the Data Protection Act
3. Relevant specifications at a glance
4. Data protection requirements by law and by the importer
5. The Data Protection Act (DSG) on two pages!
6. Leaflet
7. Comprehensive checklist - for general duties and roles
8. Summary & Q&A

On 8 January 2025, the webinar on "How the cyber attack works - an ethical hacker" took place. In an exciting presentation, Björn Hering from netzsicher GmbH showed how vulnerabilities are exploited, what role technology and employees play in this and suggested strengthening employee awareness and the cyber resilience of companies.

Topics covered:

1. What is worth protecting in the company?
2. Ransomware
3. Development of cyberattacks in Switzerland
4. How do you hack an SME? - Search for vulnerabilities
5. How do you hack an SME? - Social engineering
6. Trojan
7. Awareness for employees

Speakers: Volker Dohr (Impunix) and Tahir Pardhan (AGVS)

About this webinar: Seven punishable provisions in the Data Protection Act - what is really important!

In December, as part of Impunix Live, we are offering a discussion on the criminal law obligations that companies and organisations must observe in order to avoid personal criminal proceedings with fines of up to CHF 250,000. The Data Protection Act contains 8 independent criminal offences, 7 of which are obligations of the company and one of which affects all employees if they disclose confidential personal data to unauthorised third parties:

1. Information security
2. Order processing agreements
3. International transfer
4. Data protection declarations
5. Automated individual decisions
6. Request for information
7. Non-compliance with an order of the FDPIC
8. Disclosure of secret personal data

The webinar on IT emergency management took place on 6 November 2024. Anil Özay (AGVS), Marita Essig (Digitalmaterial) and Micha Strässler (Impunix) dispelled myths in this context and showed decisive factors for IT security and how business continuity management (BCM) can be set up to ensure business continuity.

The Impunix Live Webinar on "Data protection in the workplace?" took place on 2 October 2024. Lawyer Volker Dohr and lawyer Michelle Rabia report on which specific data protection obligations employers must fulfil and what leeway there is. Discover how to find the balance between employer obligations and employee rights and stay on the safe side legally!

Find out whether and how you can implement data protection correctly in HR.

• General duty of care (Art. 328 OR)
• Personal data in the employment relationship, Art. 328b OR
• Photos, videos of employees
• Automated applicant selection
• Stricter data processing principles for employees
• Data subject rights of employees
• A little trade secret
• Monitoring of employees
• Internal investigations
• What applies after the employment relationship

On 4 September 2024, the Impunix Live webinar on "Correct advertising in the car trade" took place. In this webinar, Tahir Pardhan from the AGVS Legal Service reported on cases that concern the AGVS Legal Service. Volker Dohr and Marc Schwenninger lead through the topic, taking into account energy data and discounts, so that garages are not targeted by the trade police.

About this webinar: Advertising with vehicles is complex. Many garages receive warnings and penalty orders from the trade police or other groups. A number of standards must be observed in order to advertise correctly in the car trade. The "Impunix Live" webinar sheds light on how you can comply with the requirements of advertising law without risking fines and penalty orders:

• Price Disclosure Ordinance (PBV)
• Energy Ordinance (EnV)
• Consumer Credit Act (KKG)
• Act against Unfair Competition (UWG)
• Information on the energy label (VEE-PW)
• Road Traffic Act (SVG)
• Telecommunications Act (TCA)

What you will learn: Insight into advertising law specifically for online presences.
Risk management: Recognise common legal stumbling blocks on retailer websites and how you can avoid them.
Practical tools: Checklist for checking your website for compliance issues.
Interactive Q&A: Ask your questions directly to our experts and benefit from immediate answers and solutions.

Special offer: Participants receive exclusive access to a list.
We would like to hear you: Your opinion is important to us! Let us know via this Link to the survey to tell us which topics you would like to see covered in future webinars.

The Impunix Live webinar on "Information security - 10 immediate measures for garages" took place on 3 July 2024. In this webinar, Felix Wyss, President of Carrosserie Schweiz & CEO/VRP of Aarauer Carrosserie Werke, gave an impressive account of his experiences with a hacker attack in which data was encrypted and a ransom was demanded. In particular, he emphasised how important it is to take care of your own cyber security. Micha Strässler and Leo Krähenbühl also presented 10 immediate measures to increase cyber security.

Central topics and learning content:

• Cybersecurity is a top priority:

Just because you have a clean outsourcing contract with an IT service provider doesn't mean you should sit back and relax. Cyber security is a matter for the boss and must be managed independently.

• Prevention:

It is worth investing in prevention in order to be well prepared in the event of an incident.

• Emergency plan:

An emergency plan on paper with documentation and access points increases your own ability to act and reduces the recovery time.
Backup and recovery: The backup and, above all, the regularly tested recovery of data is the life insurance of an SME.

• Cyber insurance:

The financial damage is only part of the burden of a hacker attack, and cyber insurance can cover this part, but this alone is not enough.
Sensitisation and

• Training:

Most attacks start with a phishing e-mail. It is therefore important to regularly sensitise employees to IT security, for example with a phishing simulation in which employees' reactions can be tested in a secure environment.

• Regular updates:

Attackers look for easy targets, leave no unnecessary doors open and regularly update the systems.

On 5 June 2024, Impunix held a live webinar on the topic of "Identifying legal pitfalls with dealer & retailer websites". In this session, our experienced speakers, lawyer Dr Marc Schwenninger and lawyer Volker Dohr, shed light on key legal aspects that operators of brand and dealer websites should consider.

Central topics and learning content:

• Imprint:

The necessity of a correct imprint and the risks of incorrect information.
Copyright: Dealing with photos and images on the website, including the importance of image rights and licences.

• Legal provisions:

How general terms and conditions (GTC) must be legally compliant.

• Online trade:

Legal challenges and best practices for web shops.

• Data protection:

Important information on cookies and data protection guidelines.
Energy labelling: What needs to be considered when labelling energy efficiency on products.

• Customer ratings:

The legal pitfalls and responsibilities when publishing reviews.