Recent Posts

Copyright Giulio Coraggio 2018

privacy

The Italian Data Protection Authority has now introduced new relevant data protection obligations for banks.Indeed banks subject to Italian data protection law shall, among others,:1. Communication of personal data within a group of banks Banks will be able to transfer customers' personal data to other banks of the same group only with the prior consent of the relevant customers, unless one of the data protection exceptions  apply (e.g. the communication in necessary to perform an agreement with the data subject).2. Outsourcers Outsourcers shall be appointed in writing...

It expires today the deadline for the implementation of the so called EU Cookies Directive 2009/136/EC amending, among others, the ePrivacy Directive 2002/58/EC setting out specific privacy-related regulations governing the electronic communications sector. The provision of the EU Cookies Directive that is leading to the most relevant discussions concerns the obligation to require the prior consent (the so called opt-in) from the subscriber/user to the processing of his personal data collected through cookies. Indeed, according to the EU Cookies Directive...

The Article 29 Working Party (the "WP"), the EU privacy advisory board, has issued an interesting opinion on the data protection issues connected to the provision of geo-location services on smart mobile devices. The conclusions reached by the WP are:geo-location data: geo-location data are "personal data" for the purposes of the EU Privacy Directive 95/46 as it is possible to indirectly identify the person whom they refer to and consequently the processing of such data has to comply with the...

The Italian Government has recently approved a decree amending some of relevant provisions of the Italian Privacy Code aimed at simplifying the privacy obligations for Italian businesses. In short, these are the main changes: COMPANIES' PERSONAL DATA: Italy was one of the very few EU countries extending the applicability of privacy laws also to personal data of companies. This decree has not clarified that companies' data are not deemed to be "personal data" for the purposes of the Italian Privacy Code...