GDPR: new privacy – tailored compliance

CategoriesDocumentsPosted on

On March 28th 2017, the attorney at law Maria Roberta Perugini will take part as a speaker in Milan at a very particular meeting, dedicated to the presentation of an application model of GDPR developed by Giancarlo Butti and Alberto Piamonte and represented analytically in the book “GDPR: NEW PRIVACY – TAILORED COMPLIANCE”, just published (please find here attached the link to the publisher’s site, where you can also download an excerpt: http://www.iter.it/gdpr/) and of which Maria Roberta Perugini has edited the preface that you will find below reported.

Read more "GDPR: new privacy – tailored compliance"

Body in charge of vigilance and control and privacy roles: general evaluation and first considerations on DPO’s processings

CategoriesDocumentsPosted on

We deal the interesting topic concerning individuation of the role assigned to bodies in charge of vigilance and control within instances of personal data processing; these bodies are by their nature independent to the entity they supervise, even when being part of it.

Read more "Body in charge of vigilance and control and privacy roles: general evaluation and first considerations on DPO’s processings"

Personal data made public by the ‘data subject’ and use of information published on social networks: early observations of GDPR art. 9, para. 2, letter e)

CategoriesDocumentsPosted on

Among the topics of current interest in the field of protection of personal data are the limits on use of the information published on social networks, especially in view of the regulatory changes introduced by the EU General Data Protection Regulation (“GDPR”). This article identifies the consequences of this issue arising from the exception on the prohibition of “processing special categories of personal data” (Art. 9 GDPR) for cases where the processing relates to “personal data which are manifestly made public by the interested party “(paragraph 2, lett. e).

Read more "Personal data made public by the ‘data subject’ and use of information published on social networks: early observations of GDPR art. 9, para. 2, letter e)"

The proposal for a Regulation on privacy and electronic communications is ready

CategoriesDocumentsPosted on

On 10 January, the European Commission presented a proposal for a Regulation (hereafter, the “Regulation”) concerning the processing of personal data and the protection of privacy in electronic communications, aimed at repealing Directive 2002/58/EC (hereafter, the “ePrivacy Directive”).

Read more "The proposal for a Regulation on privacy and electronic communications is ready"

CIPL Survey about GDPR

CategoriesDocumentsPosted on

As is widely known, the European Union General Data Protection Regulation, which replaces Directive 95/46/EC, will come into force in May 2018 and will bring relevant changes to all stakeholders: DPAs, individuals, controller and processor organizations. In order to help organizations understand the key operational impacts of the regulation and to stimulate their internal change, the Centre for Information Policy Leadership – a global privacy and security think tank that works to advance privacy and security policy, law and practice – launched a survey (respondents were both data controllers and data processors of multinational organizations with an annual revenue size ranged from less than $1 million to more than $100 billion, that predominantly operated in Europe and in the US) to evaluate their progress towards true operationalization for GDPR readiness.

Read more "CIPL Survey about GDPR"