Scholarly Articles & Institutional Publications

On April 28, 2015, several major tech companies (e.g., Google, Facebook, Microsoft, Yahoo) together with some national associations (e.g., Transatlantic Business Council and the U.S. Chamber of Commerce) sent a letter to Chttp://www.technethics.com/ongress urging it to support the bipartisan Judicial Redress Act of 2015, H.R. 1428, which would extend Privacy Act remedies to citizens of […]

The article discusses how financial institutions will have to face the prevention of cyberattacks on one side and, on the other side, the compliance with requirements imposed by regulators and law enforcement, considering the recent threats posed by cyberattacks against financial institutions and their potential impact to the global economy. The full text is available […]

Author explains the legislative procedure that would bring to the adoption of the Proposed General Data Protection Regulation. The full text is available at http://privacylawblog.fieldfisher.com/  

On April 2, 2015, the Council of Europe issued Recommendation CM/Rec(2015)5 on the processing of personal data in the context of employment. The document lists several principles – for the public and private sectors – that member States should reflect in the application of domestic legislation on the processing of personal data of employees and […]

The article describes the recent decision by the UK Court of Appeal with which the Court dismissed the appeal by Google to prevent users from pursuing action before UK Courts. With the judgment the Court found that: “(i) users can claim compensation for breach of the Data Protection Act 1998 (DPA) for distress where they […]

On March 20, 2015, the German Federal government expedited a draft bill on the enhancement of security of IT systems (Gesetzesentwurf der Bundesregierung zum IT-Sicherheitsgesetz). The draft aims at improving the protection of German citizens, companies and governmental institutions against a variety of IT security risks. The proposed legislation would require operators of digital infrastructures […]

2014 TPRC Conference Paper Abstract This paper critically assesses the character of European (Union’s) privacy law and policy in the field of online media and electronic communications. Contrary to current understanding, this field of law is more fragmented and ill-developed than is often assumed, in particular by those discussing privacy law and policy in an […]

Nathan M. Crystal & Francesca Giannoni-Crystal – new publication: Something’s got to give: breve comparazione tra l’approccio americano ed europeo al cloud computing, soluzioni pratiche, Cultura e Diritti, no.4/2014, October- December 2014, p. 27 (see here)

On February 19, 2015 (decision no. 96) the Italian Data Protection Authority (“DPA”) opened for comments a draft of a code of conduct for companies processing personal data for business information purpose. Based on the definition given in the draft, the covered companies are those that provide information and evaluation services that may involve the […]

On March 6, 2015, the Federal Trade Commission (FTC) has signed a memorandum of understanding (MOU) with the Dutch Data Protection Authority (College bescherming persoonsgegevens, see here) to “enhance information sharing and enforcement cooperation on privacy-related matters”. The MOU is similar to agreements the FTC has signed with with the data protection authorities of Ireland and the […]