I say it now, it’s not that I’m nostalgic of the three-tiers organization (titolare, responsabile, incaricato) typical of the Italian national privacy legislation. Everybody said that with GDPR we will go back to the European binary model, with DATA CONTROLLER (responsabile) and DATA PROCESSOR (incaricato). Both roles can be natural or legal persons and appear… Read More »
Within the EUROPRIVACY #Ready4EUDataP workshop, held on january 26 and dedicated to the practical consequences of the new EU General Data Protection Regulation, I found a special interest in the topic concerning the role of the Data Protection Officer, discussed in the speech of Biagio Lammoglia with Fabio Guasconi. Various aspects have been taken into… Read More »
The 2015 edition of the Protected Health Information Data Breach Report, released by Verizon and based on a database of protected health information (PHI), amounting to 392 million records, and over 1,931 incidents detected in 25 countries. http://www.verizonenterprise.com/DBIR/2015/ What’s most alarming is that 90% of companies involved in the survey suffered violations of personal health… Read More »
It seems that the FBI is confident to be able to crack the i-phone without Apple’s support, so the court date has been posponed. If FBI is right it would be a hot issue for Apple but the key point would remain the same: can a private subject claim to refuse support to a judge formally… Read More »
The Italian Authority for the protection of personal data has prepared an updated version of the information document about the figure of the Data Protection Officer provided by the GDPR, in the version amended following the political agreement between the European co-legislators (European Parliament and EU Council). This information document is available at the following link: http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4791784
No matter what anybody says, the “privacy shield” is just “smoke in the eyes”. There are not fundamentals to protect personal data in the way the European Court of Justice asked in October 2015 Judgment “versus Facebook” (C-362/14, 6 October 2015). Many people thought of the Judicial Redress Act (hereinafter JRA) as a rule extending… Read More »
Next week, within Security Summit, the most important Security Conference in Italy, some of the contributors of this web site, present and discuss about Data Breach, Data Protection by Design and Roles and Responsibilites. Per gli amici si chiama GDPR March 16th, at 11.30 AM Also, the next day, AUSED with other contributors and guests, will discuss about GDPR… Read More »
Some days ago, the Apple CEO Tim Cook decided to oppose an order signed by a Judge, denying support to FBI to brute force the Iphone of the San Bernardino terrorists. Apple refuses to develop the software required to make it possible in order to protect its customers’ privacy: that’s why this event impacts on… Read More »
On February, 29 the European Commission issued the legal texts that will put in place the EU-U.S. Privacy Shield and a Communication summarising the actions taken over the last years to restore trust in transatlantic data flows since the 2013 surveillance revelations. The Commission has (i) finalised the reform of EU Data protection rules, which… Read More »
In my courses on privacy I’m fond of saying that the Italian regulation protects against gossip. A friendly manner to highlight (what is not well known) that the Privacy Code must be respected by all citizens, who are not only protected persons, but must themselves respect the privacy policy. In fact, the d.lgs 196/03 states… Read More »