La gestione di un data breach durante l’emergenza Covid-19
L’emergenza Covid-19 ha aumentato il cyber risk e quindi il rischio di violazione del GDPR a causa del numero notevole di persone che lavorano in smart working.
L’emergenza Covid-19 ha aumentato il cyber risk e quindi il rischio di violazione del GDPR a causa del numero notevole di persone che lavorano in smart working.
Coronavirus checks are run by a large number of companies, but their privacy compliance has been rarely ascertained due to the urgency.
by Giulia Zappaterra & Deborah Paracchini 2019 brought considerable changes in the data protection world. Some EU Member States finally integrated the rules of the EU General Data Protection Regulation No. 679/2016 (GDPR) with their national laws. At the same time, local data protection authorities started to fully apply – also issuing severe sanctions – …
Top 3 Legal Predictions on Privacy and Data Protection for 2020 Read More »
As we already discovered in some of our previous articles on tech & fashion, innovative technology within the fashion industry is more apparent than ever. From updating retail experiences, to wearable technology like smartwatches, technology and innovation are continuously inspiring and influencing trends and fashions. In fact, as Marty McFly introduced smart clothing that could …
The first GDPR fine was issued in Italy by the Garante for the lack of implementation of privacy security measures following a data breach on the so-called Rousseau platform operating the websites of the Movimento 5 Stelle party.
Italian privacy dawn raids are a hot topic and being prepared to them is crucial, especially given the potential fines provided by the GDPR. Here are the main takeaways from our event on the matter.
On the 1st of March 2019, DLA Piper had the pleasure to host – together with AIGI – an event on Italian privacy dawn raids that had as main speaker, Mr. Marco Menegazzo, the head of the department of the tax police in charge of privacy dawn raids, supporting the Italian data protection authority (the Garante) on their performance.
Parleremo di ispezioni privacy e di come prepararsi alle stesse l’1 marzo da DLA Piper con il Colonnello Marco Menegazzo ed esperti del settore.
La sanzione di € 50 milioni emessa di recente dal Garante privacy francese, il CNIL, si è rivelata come un campanello di allarme per le società. Ad oltre 9 mesi dall’inizio dell’applicabilità del GDPR, i garanti europei stanno emettendo le prime sanzioni ai sensi del Regolamento privacy europeo e gli importi possono essere molto elevati.
The Brexit withdrawal agreement might have considerable privacy law related consequences on the flow personal data between the EU and the UK.
Here is an update after the publication of the Brexit withdrawal agreement. This article is based on the post published on Privacy Matters blog by my colleagues Andrew Dyson and James Clark.
Blockchain compliance with GDPR requirements was tested by the French privacy authority and the European Commission, with uncertain outcomes.
Blockchain privacy compliance is a very hot topic that led to major discussions. The compliance of the impossibility to remove information from the distributed ledger with the GDPR’s right to be forgotten for instance has been challenged in several instances. But this is only one of the topics now covered by the French data protection authority, the CNIL, in its guidelines on the topic (which were covered here on DLA Piper Privacy Matters blog by my colleagues Denise Lebeau-Marianna and Caroline Chancé) and by the EU Blockchain Observatory and Forum of the European Commission in a workshop report recently issued.
Digital ring will be an “arena” where well-established companies and new entrants will debate (and not fight) on how to succeed in the technological revolution.
As published in a previous blog post available HERE, DLA Piper arranged for the 15th of October 2018 an event named “Digital Ring” at the Milan Stock Exchange together with the largest Italian newspaper.
Lack of clarity on Italian privacy obligations is creating a considerable confusion among operators, but the GDPR is already in place.
A recent italian administrative court decision clarifies the requirements of the DPO and Belgium introduces a new data protection act implementing the GDPR.
The EU privacy regulation is relevant not only for European entities but any business looking at Europe because of its extended scope of applicability.
Italian privacy law integrating the GDPR is finally in place, but a number of provisions remain unclear, but need immediate action.
A major question when it comes to the EU privacy regulation the scope of applicable fines, how to calculate them and how to mitigate risks.