{"id":58192,"date":"2018-08-09T08:47:35","date_gmt":"2018-08-09T07:47:35","guid":{"rendered":"https:\/\/blogs.dlapiper.com\/iptitaly\/?p=58192"},"modified":"2019-06-24T11:42:35","modified_gmt":"2019-06-24T09:42:35","slug":"italian-privacy-law-integrating-the-gdpr-approved-with-big-questions","status":"publish","type":"post","link":"https:\/\/blogs.dlapiper.com\/iptitaly\/2018\/08\/italian-privacy-law-integrating-the-gdpr-approved-with-big-questions\/","title":{"rendered":"Italian privacy law integrating the GDPR approved, with big questions!"},"content":{"rendered":"

The board of the Ministries approved the final text of Italian privacy law integrating the GDPR raising major concerns on the scope of the law.\"Giulio<\/span><\/p>\n

On the 8th of August 2018, the Italian Board of Ministries\u00a0announced<\/a>\u00a0to have\u00a0approved\u00a0the Italian privacy law integrating the\u00a0GDPR. The law has not been published yet on the Official Gazette and you may remember that there was a similar announcement 3 months ago, a few days before the 25th of May 2018. Up until I don\u2019t see the law on the Official Gazette, I will not believe it! So stay calm before celebrating\u00a0\ud83d\ude09<\/p>\n

We don\u2019t have much details of the approved text of the new Italian privacy law since the last version circulated is the same of 3 months ago, but according to the Government the decree provides the following:<\/p>\n

1. The Italian Privacy Code is not repealed<\/h2>\n

Rather than removing the existing Italian Privacy Code, apparently the government decided to test our \u201cTetris<\/a>\u201d skills, just amending the existing\u00a0Italian Privacy Code<\/a>\u00a0to align it to the GDPR and replacing whole sections by means of a cross-reference to the GDPR.<\/p>\n

The result will be a very confusing text which inevitably cannot be 100% aligned to the GDPR and might contain mistakes.<\/p>\n

2. Existing decisions and authorizations of the Italian Data Protection Authority saved<\/h2>\n

According to the Government, the decisions and the authorizations issued by the Italian DPA, the\u00a0Garante per il trattamento dei dati personali<\/a>, under the regime prior to the GDPR as well as the existing Ethical Codes will remain in place \u201cto ensure continuity<\/em>\u201c, up until they are updated by the Italian DPA.<\/p>\n

This is an interesting position, but if the provision is still like in the previous draft where it was made reference to their applicability \u201cprovided that they are compatible<\/em>\u201d with the GDPR, this is going to create a major uncertainty on which decisions\/authorizations are actually compatible with the GDPR and companies shall start a sort of \u201cguess work<\/em>\u201d with the result on taking on additional obligations in order to play safe.<\/p>\n

3. Simplified modalities of compliance with the GDPR for medium\/small companies<\/h2>\n

The Italian DPA will promote, under the new Italian privacy law, simplified modalities to comply with the GDPR for small and medium enterprises.<\/p>\n

This is great, but unfortunately it might come too late when companies are likely to have already done most of the work. Also, this semplification will operate in any case within the perimeter of the GDPR that cannot be derogated, save for the aspects left to the discretionality of EU Member States. Therefore, such semplification cannot be too simple!<\/p>\n

Also, if you found this article interesting, please share it on your favourite social media!<\/p>\n

@GiulioCoraggio<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"

The board of the Ministries approved the final text of Italian privacy law integrating the GDPR raising major concerns on the scope of the law.<\/p>\n","protected":false},"author":41,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_s2mail":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[1],"tags":[34,769,6],"class_list":["post-58192","post","type-post","status-publish","format-standard","hentry","category-general","tag-data-protection","tag-gdpr","tag-privacy"],"_links":{"self":[{"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/posts\/58192","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/comments?post=58192"}],"version-history":[{"count":0,"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/posts\/58192\/revisions"}],"wp:attachment":[{"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/media?parent=58192"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/categories?post=58192"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.dlapiper.com\/iptitaly\/wp-json\/wp\/v2\/tags?post=58192"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}