/ Category / data protection
privacy shield

EU-US Privacy Shield close to an end after WP29 review?

December 7, 2017 - 7:55 am in data protection, privacy

The EU-US Privacy Shield was subject of several concerns by the Article 29 Working Party that if unresolved might lead to its future invalidation. The end of the Safe Harbor and the birth of the Privacy Shield Everyone knows the story about the invalidation…


Siete pronti per il Regolamento Privacy Europeo? Do’s and Don’€™ts

November 24, 2017 - 10:43 pm in data protection, Event, privacy

Abbiamo tenuto un seminario sul regolamento privacy europeo e come districarsi nei suoi complessi principi che sono spesso di difficile interpretazione. …


Whistleblowing law in Italy: What do you need to do now?

November 23, 2017 - 7:23 am in corporate criminal liability, data protection, privacy

The setting up of a whistleblowing scheme is now mandatory in Italy for both private and public entities, but what needs to be done?  Italy already provides…


ePrivacy draft regulation gets stricter after European approval

October 26, 2017 - 10:37 am in data protection, privacy

The ePrivacy draft regulation is turning towards a more stringent regime with after the approval by European Parliament of the latest draft.  As previously discussed, the European ePrivacy Regulation is meant to integrate the European General Data Protection…

legitimate interest

Legitimate interest and privacy consent, how to use them?

October 5, 2017 - 7:27 am in data protection, privacy

When legitimate interest can be used and the level of granularity of required privacy consent are among the open questions of the GDPR. Updated on 14 December after the publication of the draft version of the guidelines on automated decision making and profiling and…


The DPO according to the Italian privacy authority

September 20, 2017 - 11:38 pm in data protection, privacy

The role of the Data Protection Officer (DPO) and what requirements needs to meet has now been partially clarified by the Italian privacy authority. I often define the role of the DPO as one of the most complex "rebus" of the European General Data Protection…


Employees’ monitoring: a prior privacy notice might not suffice, especially under the GDPR!

September 7, 2017 - 6:23 am in data protection, privacy, Sin categoría

Privacy rights of employees are protected, if they are previously informed of the monitoring and a right balance of interests is achieved according to the Grand Chamber of the European Court of Human Rights. But is this decision compliant with the GDPR? The…

data retention

Data retention period, an intrigued rebus under the GDPR

August 30, 2017 - 11:44 pm in data protection, privacy

The determination of the data retention periods applicable to the different categories of processed personal data is a difficult quiz to solve under the GDPR. You can review my video in Italian on the topic below and/or read the more detailed article on the…

customers' data

Is your customers’ data protected from your employees?

August 9, 2017 - 5:53 pm in data protection, privacy

Access by employees to customers' data has to be subject to stringent privacy restrictions and limitations according to a decision of the Italian data protection authority.  The decision of the Italian data protection authority An individual had complained…


Need a GDPR compliant data processing agreement?

August 2, 2017 - 10:35 pm in data protection, privacy

GDPR compliant data processing agreements are a complex puzzle to solve, but here is a good template that might ease your life! I already covered in this blog post issues about how the GDPR poses new liabilities for suppliers, including gaming affiliates.…