The General Data Protection Regulation is certainly innovative and in line with the current requirements for data security. It is structured in such a way as to ensure consistency, balance and control of the powers of the stakeholders involved. It aims to achieve, in the short and medium term, some “hard” goals. Most public and… Read More »
We all are so concentrated on the new EU Regulation that we disregard easily what is going on in the rest of the world. Hereafter you can find some news from far east and far west: all over the world private data protection and security are getting more and more relevant for policy makers, citizens… Read More »
We can go on discussing about the role and collocation of the Data Protection Officer within the company, considering the new European Privacy Regulation. And we will. But when Luca Bolognini takes a stand, then the chatter end. Tuesday, 10/05 in Turin for the conference “The European Regulation Policy inside the Company” organized by Sistemi… Read More »
A substantial difference between the GDPR and the current 196/03 legislation regards the obligations for the Data Controller and Data Processor to guarantee continuous access to data. The current privacy legislation takes care of the issue mainly in Appendix B, where the minimum measure number 23 reads (cites): 23. Appropriate measures are taken to ensure… Read More »
We are often tempted to reuse a significant portion of existing solutions and processes when information systems are forced to adhere to new regulatory requirements. This is usually not prevented and indeed advisable in many cases; nevertheless in the case of the new GDPR any simple and hasty approach would seem unsuitable and misleading. This especially… Read More »
As discussed in a previous post, the new GDPR underlines the importance of the right to be forgotten, to some extent already present in the current Italian legislation. Here we want to think about the technical implications of this requirement. How much can it cost to organizations the right to be forgotten, in a society… Read More »
The GDPR, in its final version just approved by EU Commission, Parliament and Council, introduces important changes in the responsibilities and procedures for protection and management of personal data within the EU. Just think on the introduction of data breach, privacy by default, the obligation to define, document and monitor the framework adopted to protect… Read More »
The EU General Data Protection Regulation (GDPR) is causing concern for companies as they struggle to plan for its implementation according to the latest survey to be published (registration required). The survey was conducted by Blancco Technology Group of 511 individuals working in companies with up to 10,000 employees. It throws some interesting light on… Read More »
Last December, the Commission of the EU Parliament in charge approved the final text of the new General Data Protection Regulation (GDPR) thus closing the negotiation among EU Parliament, Commission and Council (the so called trilogue). Now only some formal approval steps are still missing to have it in force. Steps that shoul be completed… Read More »
Announcing the publication in the “La Comunicazione – Note, Recensioni e Notizie” magazine 2015 (Istituto Superiore delle Comunicazioni e delle Tecnologie dell’Informazione) of an article : Un modello per la valutazione dei rischi relativamente al trattamento dei dati personali nelle comunicazioni elettroniche (A risk assessment model regarding the personal data processing in electronic communications) by Alberto… Read More »