The Garante issued the largest ever GDPR fine in Italy against ENEL Energia, which, however, shows deficiencies in the enforcement procedures that should be improved to benefit privacy-related values across Europe.
The new Italian whistleblowing rules are applicable as of July 15, 2023 against companies with an annual average of more than 249 employees.
Celebrating five years of the General Data Protection Regulation (GDPR), this article delves into a detailed review of the key developments and trends over the past year. I also look ahead, offering insights into what businesses can anticipate for GDPR in the coming year.
Italy adopted the decree implementing the Omnibus Directive with significant new obligations for eCommerce online sales and considerably increased sanctions.
The Italian data protection authority, the Garante, ruled that profiling through cookies by a famous social network cannot be based on the legitimate interest of users.
The FAQs published by the European Commission on the new Standard Contractual Clauses clarify aspects related to the proper use of SCCs to regulate transfers of personal data outside the EEA.
In this infographic we give recommendations and indications in a legal design style on mistakes to avoid in the management of ESG advertising in Italy, which is increasingly becoming a hot topic.
The Austrian data protection authority deemed the transfer of personal data to the United States performed through Google Analytics to breach the GDPR.
The EDPB took an arguable position on a few aspects regarding data transfers covered by its draft guidelines on the interplay between Article 3 and Chapter V of GDPR.
A recent regulatory change allows the storage in Italy of employees' green pass certificates by employers with significant consequences in terms of privacy compliance.