Social Spam & Marketing

In the NEWSLETTER N. 435 del 29 novembre 2017 http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/7221009 the Italian Autority point attention on a type of questions that are often made to me during courses and / or conferences, id est if and within what limits it is possible to use the e-mail addresson socialfor marketing purposes. Our Autority reminds us that… Read More »

Delegation to the Government for the transposition of European directives and the implementation of other European Union acts

On 25 October the Delegation to the Government for the transposition of European directives and the implementation of other European Union acts (European delegation law 2016-2017) was issued. Delegation to the Government for the Transposition of European Directives and the Implementation of Other Acts of the European Union – European Delegation Law 2016-2017. (17G00177) (OJ… Read More »

Data Breach, not just “notification”

Among the new disciplines, introduced by GDPR, the one about the data breach is seemingly the least of the problem. Unlike DPIA and DPO, rated as discussed topics, Data Breach seems to be a clear point. In fact, there aren’t dispute on this topic. Also, WP250 Guidelines (adopted by the WP29 on 10/3/2017) explain and… Read More »

What are standardization action to comply with art. 42 of EU Regulation 679/16?

Article 42 of EU Regulation 679/16 on Data Protection states: ” The Member States, the supervisory authorities, the Board and the Commission shall encourage, in particular at Union level, the establishment of data protection certification mechanisms and of data protection seals and marks, for the purpose of demonstrating compliance with this Regulation of processing operations… Read More »

Decisions, authorisations & measures: Who will be there and how after the 25th of May 2018?

As the date of 25 May 2018 is approaching, the day on which the EU regulation 2016/679 will come into application, more and more often one wonders what the current legislation will survive after the entry of the GDPR. The answer to this question is still far away but I would like to point out… Read More »

Controller and Processor standard clauses

The French DPA (CNIL) and Spanish DPA (AGDP) have issued two guides for data processors, namely “Règlement européen sur la protection des données : un guide pour accompagner les sous-traitants” and “Directrices para contratos responsable – encargado” respectively. Furthermore the English DPA (ICO) has published a draft gdpr contracts guidance. These have a positive impact… Read More »

DRAFT ePRIVACY REGULATION: THE COUNCIL OF THE EUROPEAN UNION RELEASED ITS PROPOSED AMENDMENTS

On September 8th, the Council of the EU released its proposed amendments to the draft ePrivacy Regulation (“Regulation”) which has already been the subject of different opinions and draft amendments over the last few months, as highlighted in our previous news. As clarified in the text, this document is only a first redraft of the… Read More »