/ Category / data protection
legitimate interest

Legitimate interest and privacy consent, how to use them?

October 5, 2017 - 7:27 am in data protection, privacy

When legitimate interest can be used and the level of granularity of required privacy consent are among the open questions of the GDPR. As part of the privacy audits that we are running for several clients to get them compliant with the European General Data…

DPO

The DPO according to the Italian privacy authority

September 20, 2017 - 11:38 pm in data protection, privacy

The role of the Data Protection Officer (DPO) and what requirements needs to meet has now been partially clarified by the Italian privacy authority. I…

monitoring

Employees’ monitoring: a prior privacy notice might not suffice, especially under the GDPR!

September 7, 2017 - 6:23 am in data protection, privacy, Sin categoría

Privacy rights of employees are protected, if they are previously informed of the monitoring and a right balance of interests is achieved according to…

data retention

Data retention period, an intrigued rebus under the GDPR

August 30, 2017 - 11:44 pm in data protection, privacy

The determination of the data retention periods applicable to the different categories of processed personal data is a difficult quiz to solve under the GDPR. Same data minimization principle, but more transparency and risks The obligation to store personal…

customers' data

Is your customers’ data protected from your employees?

August 9, 2017 - 5:53 pm in data protection, privacy

Access by employees to customers' data has to be subject to stringent privacy restrictions and limitations according to a decision of the Italian data protection authority.  The decision of the Italian data protection authority An individual had complained…

GDPR

Need a GDPR compliant data processing agreement?

August 2, 2017 - 10:35 pm in data protection, privacy

GDPR compliant data processing agreements are a complex puzzle to solve, but here is a good template that might ease your life! I already covered in this blog post issues about how the GDPR poses new liabilities for suppliers, including gaming affiliates.…

privacy

Top 3 privacy insights from Summer Legal Conference

July 27, 2017 - 6:49 am in data protection, privacy

Interesting issues arose from the privacy related discussions at the Summer Legal Conference with major thought leaders on the GDPR obligations and their impact on businesses.  I was invited on 24 July 2017 as a speaker at the Knowledge Nomads Summer Legal…

monitoring

Red flag from privacy authorities on technologies at work

July 20, 2017 - 8:47 am in data protection, privacy

Privacy risks can arise from the usage of new technologies by employees at work and require a deep assessment especially in the light of the General Data Protection Regulation.  The Article 29 Working Party, a European advisory body made by European data…

data on criminal convictions

How data on criminal convictions of employees become a privacy risk

July 6, 2017 - 6:54 am in data protection, privacy

A decision of the Italian privacy authority on the illegal collection of data on criminal convictions of employees raised the issue on a practice that is quite common. We are running a number of privacy audit on companies that need to get compliant with the…

privacy

Top 5 essential activities to get ready for the European Privacy Regulation

May 25, 2017 - 6:51 am in data protection, privacy

How to get ready for the GDPR right now? This was the topic of the seminar arranged to celebrate the one year deadline from the effective date of the EU Privacy Regulation.  As previously mentioned on this blog, my law firm arranged a privacy breakfast in…