Author Archives: laura.marretta

About laura.marretta

Avv. Laura Marretta Dopo aver conseguito la Maturità Classica presso l’Istituto Marcelline di Milano e la Laurea in Giurisprudenza presso l’Univeristà Cattolica del Sacro Cuore diventa Avvocato del Foro di Milano ed è Partner dello Studio Legale Internazionale Romolotti Marretta dal 2006. Svolge la propria attività professionale con particolare riferimento ai settori della Privacy e Data Security, Tutela del Segreto Industriale, Diritto della Moda, Energy, e Sistemi di Organizzazione Aziendale (normative UNI CEI ed ISO) nonché in ambito di Certificazioni e Marcatura CE. Svolge il ruolo di Responsabile Privacy presso enti associativi di rilevanza nazionale nonché per conto di società del settore industriale e dei servizi. E’ relatrice presso corsi e convegni sul territorio nazionale, con specifico riferimento ai settori della privacy e della video security. Collabora in pubblicazioni nazionali ed internazionali (www.romolottimarretta.com/pubblicazioni.html) tra le quali numerose edizioni annuali di Doing Business edito dalla World Bank Maturità Classica at Istituto Marcelline of Milan, Graduated in Law at Univeristà Cattolica del Sacro Cuore, Attorney at Law of the Milan Bar, is a Partner of Romolotti Marretta International Law Firm since 2006. Her professional activity is focused on Privacy and Data Security, Trade Secret Protection, Fashion Law, Energy Law, Enterprise Organization (UNI CEI and ISO standards), Certification and CE mark. She is Privacy Officer in associations at national level and companies of the industrial and services areas. Speaker at seminars and conferences with specific reference to privacy and videosecurity law, she is a contributor in national and international publications, included several editions of Doing Business edited by World Bank (www.romolottimarretta.com/lang2/publications.html)

Some news from the website of Italian Data Protection Authority

In these last days, the privacy Italian Data Protection Authority’s website has published some important news visible at the following links http://garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/8036793 http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/7322292 http://194.242.234.211/documents/10160/0/Guida+all+applicazione+del+Regolamento+UE+2016+679.pdf It is about: 1)      New Faq on the DPO 2)      Model of data communication of the DPO ex article 37 paraf. 7 GDPR 3)      Guide to the application of EU Regulation… Read More »

Right to oblivion and indexing of non-EU websites: the position of Persona Data Protection Authoriy.

Google privacy saga concerning right to obivion continues with the measure of Italian Persona Data Protection Authority n. 557 dated December 21st, 2017 concerning the remova of certain Url from the list of European and non-European results of the widely-known search engine. It is very interesting the fact that the data subject is an Italian… Read More »

Social Spam & Marketing

In the NEWSLETTER N. 435 del 29 novembre 2017 http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/7221009 the Italian Autority point attention on a type of questions that are often made to me during courses and / or conferences, id est if and within what limits it is possible to use the e-mail addresson socialfor marketing purposes. Our Autority reminds us that… Read More »

Decisions, authorisations & measures: Who will be there and how after the 25th of May 2018?

As the date of 25 May 2018 is approaching, the day on which the EU regulation 2016/679 will come into application, more and more often one wonders what the current legislation will survive after the entry of the GDPR. The answer to this question is still far away but I would like to point out… Read More »

Right to be forgotten: all on the same road!

During this summer the Italian Privacy Autority had posted in Newsletter n. 431 of 8.8.2017 a summary of a Provision n. 277 del 15.6.2017 that was based on the fact of how, under the right to be forgotten, time is not the only factor to be taken into account for the existence of same. From the… Read More »

Dpo certification scheme: Spain arrives first!!

AEDP is the first in EU to issue with ENAC a Dpo certification scheme
As below:

https://www.agpd.es/portalwebAGPD/index-ides-idphp.php
https://www.agpd.es/portalwebAGPD/revista_prensa/revista_prensa/2017/notas_prensa/news/2017_07_13-ides-idphp.php
https://www.agpd.es/portalwebAGPD/temas/reglamento/common/pdf/Certificacion/ESQUEMA_AEPD_DPD_PUBLICO_1.0.pdf

Monitoring of approved codes of conduct

Let us assume for a moment that we have a perfect code of conduct, the best that you could ever write, already approved, recorded and released by the supervisory authority, and so – at this point – you should only “hope” that itwill be adopted by users for which it was drawn. Here, we imagine… Read More »

Guidelines DPIA … for whom / for what ??

On 4.4.2017 the WP has adopted the “Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk” for the purposes of Regulation 2016/679” the question is  why, for whom and for what. The answer is inside the document and is not a secondary matter because if… Read More »