Home
Internal
Global
Contatto
Click here to read the full article »
The Polish body responsible for compliance with the GDPR (the President of the Personal Data Protection Office – PDPO) published on 24 January a plan of inspections of personal data processing in certain sectors of the Polish economy.
Click here to read the full article (in Italian) »
Just as at the end of each annual activity an analysis of the pros and cons is carried out, we cannot avoid this with reference to the new European Privacy Regulation which, despite being applicable from 25 May 2018, has had and still has a strong impact.
The State Data Protection Inspectorate on 05.02.2019 has announced the inspection plan for the year 2019. This is the first large scale inspection after entry into force of the new General Data Protection Regulation (GDPR) on 25 May, 2018. Therefore the inspected companies will face a challenge in verifying if their activities and documents comply with the provisions of the GDPR.
On January 29th, 2019 the Data State Inspectorate (DSI) released a clarification on whether sworn auditor processing personal data, while providing audit services to the client, shall be recognised as data controller or data processor for the General Data Protection Regulation (GDPR) purposes.
With Legislative Decree 101/2018, which provides for the adaptation of national legislation to the European Regulation on the protection of personal data (GDPR), the Italian legislator has implemented the right granted to all Member States to provide for criminal penalties for certain violations of privacy legislation.
Click here to read the full article (in Italian)»
The general authorizations for the processing of personal data are administrative acts that, adopted by the Guarantor Authority under the previous text of the Privacy Code, regulated some processing of personal data that did not find a disciplined detail.
In response to a query submitted by the ICAC (the Spanish accounting regulator), the AEPD (Spanish Data Protection Authority) has confirmed that auditors have a data controller status. According to the AEPD, the exercise of the audit activity requires, by legal mandate, independence with respect to the audited entity and storage of the collected information. These two obligations are incompatible with the data processor condition, which must submit to the data controller’s instructions and, among other things, return or delete the data once the contractual service has been fulfilled.Click here to read the full article »
The Supervisory Authority for the Protection of Personal Data, on the occasion of the publication of Measure no. 497 of 13 December 2018, in which the prescriptions of the general authorizations compatible with Reg. EU 2016/679 were specified, also expressed itself on the subject of the processing of the particular data of the candidates by the employers.
Since December 3, the European Union has banned the so-called geo-blocking, i.e. the set of practices with which online shops restrict the purchases of customers connecting from other countries of the European Union.
Rita Santaniello
Avvocato
Partner
Invia richiesta
Profilo
Nadia Martini
