Intelligence artificielle et automatisation des décisions dans le secteur bancaire et financier : application de la LPD et du RGPD

This article addresses the application of Automated Decision-Making (ADM) in banking and finance, under the revised Swiss Federal Act on Data Protection and the EU’s GDPR. It scrutinizes the legal framework of ADM, particularly considering the European Court of Justice’s interpretation in the SCHUFA Holding AG case, which broadens the scope of “decision” within the GDPR, encompassing actions like credit scoring. The paper highlights the necessity of meaningful human intervention (human in the loop) in automated processes to avoid classification as ADM. It also contrasts the EU’s general prohibition of ADM, subject to exceptions, with Switzerland’s emphasis on informational rights. The discussion extends to the consequences of violating ADM regulations, comparing EU and Swiss approaches. Concluding, the implementation of ADM regulation in Switzerland is seen as being influenced by individual rights exercise, regulatory oversight, and responsiveness to rights infringements.