Two rules that get confused
DORA and Swiss banking secrecy are frequently bundled as "financial-sector data rules," but they govern different things and sit in different legal systems.
- DORA (Regulation (EU) 2022/2554, applying from 17 January 2025) is an EU operational-resilience regime: it dictates how financial entities keep information and communications technology (ICT) systems running through disruption.
- Swiss banking secrecy (Article 47 of the Banking Act) is a Swiss criminal confidentiality duty: it makes unlawful disclosure of client information a punishable offence.
One is prescriptive process regulation about systems; the other is a confidentiality obligation about client identity and financial data. They are not in conflict, and neither substitutes for the other. This lesson takes each apart mechanically, then shows where a single institution meets both.

