Generative AI in Finance: 2025 Playbook From The Swiss Bankers Association

TL;DR — Generative AI (GenAI) can drive real gains in productivity, operational efficiency, customer satisfaction, and financial product innovation for Swiss banks. But the benefits only materialize if deployments follow strict legal, compliance, and governance rules: FADP/FDPIC transparency, Banking Secrecy (BA Art. 47), Unfair Competition Act safeguards, FINMA Guidance 08/2024 governance & monitoring expectations, and—for EU-facing institutions—the EU AI Act.
The Swiss Bankers Association (SBA) recommends a four-phase adoption roadmap: Explore → Analyze & Roadmap → Basics & Implementation → Scale & Improve (Swiss Bankers Association, 2025).

Executive Summary

For Swiss banks, GenAI is no longer an experimental technology. It is already being embedded into daily workflows to speed up research, improve compliance efficiency, personalise client service, and enable faster product design. The SBA’s 2025 framework is pragmatic and risk-aware: banks should align GenAI initiatives with core business strategy, ensure cross-department accountability, and build technology stacks that satisfy regulators and auditors (Swiss Bankers Association, 2025).

FINMA’s supervisory position is clear: AI use in finance must be explainable, fair, resilient, and continuously monitored (FINMA, 2024). This means that any “AI transformation” plan must build compliance into its DNA from day one.

1. Switzerland’s Market Context

Banking represents 9–9.4% of Switzerland’s gross value added and ~5.4% of national employment. These figures highlight why even small productivity gains from GenAI could have macroeconomic impact (European Banking Federation, 2024; Swiss Insurance Association, 2024).

The sector is already adopting AI: by 2024, six in ten Swiss banking employees were using GenAI in some form (Swiss Bankers Association, 2025). Early movers are positioning themselves not only for cost and time savings but also for competitive advantage in client trust, responsiveness, and innovation.

2. Bank-Ready GenAI Use Cases

Employee Productivity

GenAI can act as an always-on research assistant, policy checker, and content generator. Staff can quickly search and summarise internal documents, extract key points from regulatory updates, or turn complex reports into client-friendly summaries.
It can also generate and refine reports, presentations, translations, and marketing materials, enforcing corporate tone and terminology. Meeting notes, compliance memos, and even draft code can be automated—helping teams focus on higher-value, judgment-based work.
One of the most promising methods is Retrieval-Augmented Generation (RAG), where the AI searches a secure internal knowledge base before producing an answer. This ensures responses are grounded in official, bank-approved content.

Example: Raiffeisen trained 300 “AI champions”, held “promptathons,” and achieved a 50% rise in Microsoft Copilot Chat adoption—laying the foundation for secure RAG deployments (Swiss Bankers Association, 2025).

Operational Efficiency

AI can streamline compliance-heavy processes.

• KYC Onboarding – Automatically extract data from ID documents, validate against watchlists, and flag anomalies for review.
• Fraud Monitoring – Analyse transaction patterns for unusual activity, triage alerts by severity, and route high-risk cases to investigators.
• Compliance Checks – Review contracts, communications, and transactions for potential regulatory breaches, highlighting flagged items for human verification.

These automations cut manual workloads, reduce errors, and allow compliance teams to focus on the riskiest cases.

Example: SIX uses an on-premises open-source GenAI platform to transcribe and analyse customer calls, spot service issues, recommend training, and surface new sales opportunities—all without exposing sensitive data to external vendors (Swiss Bankers Association, 2025).

Customer Experience

GenAI-powered virtual assistants can offer 24/7 support, answer routine questions, assist with transactions, and explain banking products in simple language. When coupled with human-in-the-loop review, these systems can even provide tailored investment suggestions or loan options.
Banks with multilingual clients can use AI-based translation models tuned to match corporate tone and industry-specific language, ensuring communications are both accurate and brand-consistent.

Example: Julius Bär fine-tunes translation AI so it uses correct financial terminology, avoids awkward phrasing, and meets client expectations for precision (Swiss Bankers Association, 2025).

Product Innovation

From personalised investment strategies that integrate real-time market data to alternative credit scoring models that use non-traditional data, GenAI is helping banks design products that are faster to market and more tailored to customer needs.
For product teams, AI-assisted code generation speeds up development of new online banking features, even enabling non-programmers to participate in prototyping.

3. Legal & Regulatory Foundations

Federal Act on Data Protection (FADP) & FDPIC

If AI processes personal data, banks must follow principles like purpose limitation and accuracy, and implement strong security controls. High-risk processing—such as profiling that impacts credit approval—requires a Data Protection Impact Assessment (DPIA).
Clients must know when they’re dealing with AI and what happens to their data (Federal Data Protection and Information Commissioner, 2023).

Banking Secrecy (BA Art. 47)

Client Identifying Data (CID) must never be fed into AI prompts or training data. Outsourced AI providers must be bound by contracts that guarantee data protection (Swiss Bankers Association, 2025).

Unfair Competition Act (UCA)

AI use must avoid misleading customers—for example, a chatbot must disclose it’s AI if not obvious, and AI-generated ads must be representative. No dark patterns, false claims, or competitor misrepresentation are allowed (Swiss Bankers Association, 2025).

FINMA Guidance 08/2024

• Governance – Clear AI accountability, cross-department literacy.
• Risk Controls – Model testing, data quality checks, documentation.
• Explainability – Outputs must be understandable by internal teams and, where relevant, clients.
• Non-Discrimination – Guard against bias in credit, pricing, and service decisions (FINMA, 2024).

Outsourcing & Resilience

FINMA Circulars 2018/3 and 2023/1 require thorough oversight of third-party AI services and planning for operational disruptions (FINMA, 2021, 2023).

EU AI Act (for EU-facing banks)

The EU AI Act applies extraterritorially to Swiss banks serving EU clients.

• Aug 1, 2024 – Act in force
• Feb 2, 2025 – Prohibitions & AI literacy
• Aug 2, 2025 – GPAI obligations
• Aug 2, 2026 – Most high-risk rules (European Commission, 2024; European Parliament, 2025)

4. Architecture That Passes Audit

Cloud vs On-Prem – Cloud can offer speed and scalability; on-prem may offer better data control and compliance alignment. The choice depends on latency needs, cost constraints, and vendor risk.

RAG vs Fine-Tuning –

• RAG is ideal for dynamic, cited answers based on internal content.
• Fine-tuning aligns model tone, structure, and domain expertise.
• Hybrid approaches often provide the best of both worlds (Microsoft, 2024a, 2024b).

Early AI Agents – Start with predefined workflows and prompt chains. Only move toward autonomous “agentic” systems after sandbox testing, human approval checkpoints, and kill-switches are in place.

5. SBA’s Four-Phase Roadmap

1. Explore – Build AI literacy, pilot low-risk use cases.
2. Analyze & Roadmap – Score opportunities by value and feasibility; run proofs-of-concept.
3. Basics & Implementation – Deploy governance, infrastructure, and first live systems.
4. Scale & Improve – Expand successful models, retrain as needed, and align with new regulations (Swiss Bankers Association, 2025).

6. Control Stack & KPIs Auditors Expect

• Model Risk – Maintain data lineage; run bias and drift tests.
• Explainability – Keep client-facing outputs understandable.
• Fairness – Ensure credit/pricing models are bias-tested; allow appeal processes.
• Cybersecurity – Defend against prompt injection, data leaks, and malicious model manipulation.
• Vendor Oversight – Document third-party monitoring and compliance.
• Macroprudential Awareness – Recognise AI’s systemic implications (Financial Stability Board, 2024; Bank for International Settlements, 2024).

7. 30-Day Starter Plan

Week 1 – Approve an interim AI policy (no CID in prompts, clear disclosures, logging), create DPIA template, choose secure RAG sandbox.
Week 2 – Select two “quick win” pilots such as internal knowledge search and compliance report drafting.
Week 3 – Launch MVPs with masked data and red-teaming to test robustness.
Week 4 – Review results, update risk register, align project timelines with EU AI Act obligations (European Commission, 2024).(European Commission, 2024)

References

Bank for International Settlements. (2024). Artificial intelligence and the economy: Implications for central banks and financial stability. https://www.bis.org/publ/arpdf/ar2024e3.htm

European Banking Federation. (2024). Switzerland: Country profile. https://www.ebf.eu/switzerland/

European Commission. (2024, August 1). AI Act enters into force. https://commission.europa.eu/news-and-events/news/ai-act-enters-force-2024-08-01_en

European Parliament. (2025). AI Act implementation timeline. https://www.europarl.europa.eu/RegData/etudes/ATAG/2025/772906/EPRS_ATA(2025)772906_EN.pdf

Federal Data Protection and Information Commissioner. (2023). Factsheet on data protection impact assessment. https://www.edoeb.admin.ch/en/30082023-factsheet-on-data-protection-impact-assessment

Financial Stability Board. (2024). The financial stability implications of artificial intelligence. https://www.fsb.org/2024/11/the-financial-stability-implications-of-artificial-intelligence

FINMA. (2021). Circular 2018/3: Outsourcing – banks and insurers. https://www.finma.ch/en/~/media/finma/dokumente/dokumentencenter/myfinma/rundschreiben/finma-rs-2018-03-01012021-de.pdf

FINMA. (2023). Circular 2023/1: Operational risks and resilience. https://www.finma.ch/en/~/media/finma/dokumente/dokumentencenter/myfinma/rundschreiben/finma-rs-2023-01

FINMA. (2024). Guidance 08/2024: Governance and risk management in AI. https://www.finma.ch/en/news/2024/12/20241218-mm-finma-am-08-24

Microsoft. (2024a). Augment LLMs with RAGs or fine-tuning. https://learn.microsoft.com/en-us/azure/developer/ai/augment-llm-rag-fine-tuning

Microsoft. (2024b). RAG vs. fine-tuning: Pipelines, tradeoffs, and a case study. https://www.microsoft.com/en-us/research/publication/rag-vs-fine-tuning-pipelines-tradeoffs-and-a-case-study

Swiss Bankers Association. (2025, April). Generative AI in banking – A comprehensive overview. https://www.swissbanking.ch/en/downloads/sba-generative-ai-in-banking-2025

Swiss Insurance Association. (2024). BAK study: Insurers remain most productive sector in the financial industry. https://www.svv.ch/en/bak-study-2024-insurers-remain-most-productive-sector-financial-industry