The evolution in legislation is linked to: An increased awareness and maturity (the directive is 20 years old) The need for greater rules flexibility, being able to adapt them to the cultural and technological context and evolution The need to consider the size and type of organizations and the personal data processing related risk The new… Read More »
The recent scandal of the data theft suffered by Canadian extramarital dating website Ashley Madison astonished and continues to create consequences; nearly 10 GBs of data stolen by a hacker group and containing highly sensitive information about the private life of the users involved, whose lives have been however inevitably affected only for being part… Read More »
The most important italian newspaper, Corriere della sera, today publishes, in the first page of the economy section, a short story with this title: “European banks require less privacy for their customers”. Literally. Reporting news from Financial Times, the story tells that bank’s lobby is pushing back on the PDP Regulation to get a lighter… Read More »
Is the DPO role requirement downgrade, out of the recent EP position and Council General Approach (15/06/2015), a real understatement or a need for an intermediate shorter but common step ahead for all Member States? The Data Protection matter seems affected by annoyance and embarrassment both on the side of single individuals, which should feel themselves… Read More »
The issue of cross-border banking is one of the major topics of discussion in the European Union at the same level of Privacy. But are the two issues contaminated? Or do they at least present some overlaps? Let me recap some definitions. Oversimplifying, all those issues relating to the reconciliation and mutual adoption of regulatory… Read More »
Italy gets funding from the EU Horizon 2020 program for the project Vision on visual management of privacy. the Project VisiOn (Visual Privacy Management in User Centric Open Environments), funded by the EU under the Horizon 2020 program with over 3.1 million Euros, is being coordinated by an Italian-Business. VisiOn has been selected in the… Read More »
The controller and the processor shall designate, where applicable, a Data Protection Officer (DPO) on the basis of professional qualities and, in particular, knowledge and experience on data protection law and practices, and ability to fulfil the assigned tasks . The controller (or the processor) shall ensure that the Data Protection Officer is properly and timely involved… Read More »
As the GDPR progresses along its path, the program to comply with the new discipline has to be envisaged. Such program shall surely be complex for the impacts that the new regulation is going to have on organization, processes and technologies. Preliminarily there are two basic questions that need to find answers: Which is the… Read More »
In two previous posts, I’ve presented some of the ideas for planning and execution of PIA process and report. Risk assessment is a very useful tool for management decision. Unfortunately someone promotes too much complex risk assessment methods that don’t help any management decision, but only increase the time and effort for analysis and don’t… Read More »
An app was released for mobile phones and tablets that allows to consult the work of European Institutions on the general rules for the protection of data. The Italian Giovanni Buttarelli launched the app on National and European data protection “to compare the latest changes in General Data Protection Regulation (GDPR) brought by the co-legislating… Read More »