Author Archives: giuliospreafico

MIFID II and GDPR Regulations

Following the mandate given by the European Commission, the European Securities and Markets Authority (ESMA) published its final technical advice on MiFID II on 19 December 2014, and on MAR on 3 February 2015. On 10 February 2016, the European Commission confirmed one year delay to the MiFID II timetable. The new target for implementation… Read More »

DPO “fulfilling other tasks” and “Conflict of interests” in WP29 Guideline wp243. ISACA Frameworks are helpful tools to better define internal segregation of duties.

The WP29 adopted on December 13 a guideline, in order to better defining to the role of the DPO in the GDPR. WP29 DPO Guideline, at 3.5. point states that: Article 38(6) allows DPOs to ‘fulfil other tasks and duties’ but ‘any such tasks and duties do not result in a conflict of interests’. WP29… Read More »

The DPO Role and the Cobit 5 ISACA Framework

In the perspective of the new EU Data Protection Regulation, Companies which process personal data should have roles and organizational structures capable of ensuring the satisfaction of security requirements and compliance. For this purpose, the Data Protection Officer (DPO) Role is the main function that companies should identify. The DPO mission is to be a… Read More »