GDPR AND INFORMATION SYSTEM
WAITING FOR TRANSLATION
Physical Cyber Security Assessment
WAITING FOR TRANSLATION
How to prepare to comply to GDPR
The GDPR was born one year ago (on the 27th April, published on GUE on 4th May 2016) and many have not yet outlined an adjustment plan. There is only one year left to comply to (the deadline is established on 25th May 2018). Some data protection authority of each EU Member State have published… Read More »
Guidelines DPIA … for whom / for what ??
On 4.4.2017 the WP has adopted the “Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk” for the purposes of Regulation 2016/679” the question is why, for whom and for what. The answer is inside the document and is not a secondary matter because if… Read More »
ePrivacy Regulation Proposal and GDPR
The European Data Protection Supervisor (EDPS) has published an Opinion on the Proposal for a Regulation on Privacy and Electronic Communications (ePrivacy Regulation), which will complement the GDPR within the European Data Protection Framework. Buttarelli appreciates several positive aspects of the Proposal and also the fact that the legislator has adopted some of its previous… Read More »
The new European Regulation gives greater value and facilitation to scientific research.
The Directive 95/46/EC deal with the argument in the following terms: The processing of personal data for scientific research purposes is not considered incompatible with other processing (art. 6) For scientific use, personal data may be stored for longer periods (art. 6) The provision of information to the data subject may not be given when… Read More »
ACCOUNTABILITY
WAITING FOR TRANSLATION
Data portability
WAITING FOR TRANSLATION
Guidelines Data Protection Impact Assessment
On April 5, the “Article 29 Data Protection Working Party” has published the “Guidelines on Data Protection Impact Assessemnt (DPIA) in order to give a valid interpretation of art. 34 of the EU Regulation 2016/679. The document consists of 19 pages (plus two attachments) very dense, having regard to the complexity of the matter. From guidelines it… Read More »
Final DPO Guidelines
Following three months of consultation (with the contribution of Europrivacy as well), Working Party Art29 adopted, on April 5 2017, the final guidelines regarding Portability of Data, Data Protection Officer (DPO) and the criteria for the identification of the “lead authority” according to the GDPR. In addition, the WP29 during the plenary meeting of April… Read More »