Italian DPA prohibits company’s geo-location system on its vehicles

On June 28, 2018, the Garante per la Protezione dei Dati Personali, Italy’s Data Protection Authority (DPA), rendered a decision reminding that privacy must be protected from the design phase of a product or service. With its decision, the Italian DPA prohibited the processing of data to the company that installed the geo-localization system on […]

Tags: ,

Italian DPA issues 2017 annual activity report – some interesting (and perhaps unexpected) information

On July 10, 2018, the Italian Data Protection Authority (DPA), the Garante per la Protezione dei Dati Personali, issued the annual report on its activity for 2017. The English version of the report is not yet available. However, we extracted some numbers for you from the Italian text. Overall, there is a decrease in the number of […]

Tags: ,

CNIL published guidelines on data protection in the health sector

In June 2018, the CNIL, Commission Nationale Informatique & Libertes, published guidelines for the protection of personal data in the health sector. In particular, the French Data Protection Authority (DPA) provides professionals in the health sector with tips to comply with the EU Privacy Regulation 2016/679, GDPR: limit the information collected to what is necessary […]

UK NIS regime

On May 10, 2018, the new regulations on the Security of Network and Information Systems came in to force in the UK. The new regulation is called the Network and Information Systems Regulations 2018 – the NIS regime. The NIS follows the adoption of the EU Cybersecurity Directive according to which “Operators of essential services” (OESs) […]

Tags: ,

Irish DPA prepared a list of processing operations that require DPIA open for public consultation

In June 2018 the Irish Data Protection Commission (DPC) published a draft list of processing operations for which it is mandatory to conduct a data protection impact assessment (DPIA). The list is intended to encompass both national and cross-border data processing under Article 35 of the General Data Protection Regulation (GDPR). With a view to […]

Tags: ,

Another step toward an EU online market place without discrimination based on customers’ location: Regulation (EU) 2018/302

On March 22, 2018, the new EU rules against unjustified geo-blocking (Regulation (EU) 2018/302) entered into force and will be applicable starting December 3, 2018. The Regulation aims at abolish discrimination based on nationality and residence. Sellers will have to stop denying access to websites from one Member States to the other, preventing purchases of […]

Tags: ,

Italian DPA forbids pop-up requiring one consent for data processing for various purposes

On May 22, 2018, the Garante per la Protezione dei Dati Personali, Italy’s Data Protection Authority (DPA), prohibited a company offering a comparison service for light, gas, mobile line, insurance, mortgages (and other services) on its website (Company) to process for marketing and sales purposes the data collected through a pop-up on its website. The […]

Tags: ,

Italian police authority explains how it will verify companies’ privacy compliance

Informazionefiscale.it reported an interesting interview with Marco Menegazzo, commander of the Special Privacy Unit of the Italian Guardia di Finanza, who spoke during the Privacy Day Forum held on May 25, 2018, and which dealt with privacy, sanctions and checks under the GDPR. Which checks will be carried out by the Italian authority under the GDPR? […]

Tags: ,

1 4 5 6 7 8 27