Author Archives: laura.marretta

About laura.marretta

Avv. Laura Marretta Dopo aver conseguito la Maturità Classica presso l’Istituto Marcelline di Milano e la Laurea in Giurisprudenza presso l’Univeristà Cattolica del Sacro Cuore diventa Avvocato del Foro di Milano ed è Partner dello Studio Legale Internazionale Romolotti Marretta dal 2006. Svolge la propria attività professionale con particolare riferimento ai settori della Privacy e Data Security, Tutela del Segreto Industriale, Diritto della Moda, Energy, e Sistemi di Organizzazione Aziendale (normative UNI CEI ed ISO) nonché in ambito di Certificazioni e Marcatura CE. Svolge il ruolo di Responsabile Privacy presso enti associativi di rilevanza nazionale nonché per conto di società del settore industriale e dei servizi. E’ relatrice presso corsi e convegni sul territorio nazionale, con specifico riferimento ai settori della privacy e della video security. Collabora in pubblicazioni nazionali ed internazionali (www.romolottimarretta.com/pubblicazioni.html) tra le quali numerose edizioni annuali di Doing Business edito dalla World Bank Maturità Classica at Istituto Marcelline of Milan, Graduated in Law at Univeristà Cattolica del Sacro Cuore, Attorney at Law of the Milan Bar, is a Partner of Romolotti Marretta International Law Firm since 2006. Her professional activity is focused on Privacy and Data Security, Trade Secret Protection, Fashion Law, Energy Law, Enterprise Organization (UNI CEI and ISO standards), Certification and CE mark. She is Privacy Officer in associations at national level and companies of the industrial and services areas. Speaker at seminars and conferences with specific reference to privacy and videosecurity law, she is a contributor in national and international publications, included several editions of Doing Business edited by World Bank (www.romolottimarretta.com/lang2/publications.html)

Social Spam & Marketing

In the NEWSLETTER N. 435 del 29 novembre 2017 http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/7221009 the Italian Autority point attention on a type of questions that are often made to me during courses and / or conferences, id est if and within what limits it is possible to use the e-mail addresson socialfor marketing purposes. Our Autority reminds us that… Read More »

Decisions, authorisations & measures: Who will be there and how after the 25th of May 2018?

As the date of 25 May 2018 is approaching, the day on which the EU regulation 2016/679 will come into application, more and more often one wonders what the current legislation will survive after the entry of the GDPR. The answer to this question is still far away but I would like to point out… Read More »

Right to be forgotten: all on the same road!

During this summer the Italian Privacy Autority had posted in Newsletter n. 431 of 8.8.2017 a summary of a Provision n. 277 del 15.6.2017 that was based on the fact of how, under the right to be forgotten, time is not the only factor to be taken into account for the existence of same. From the… Read More »

Dpo certification scheme: Spain arrives first!!

AEDP is the first in EU to issue with ENAC a Dpo certification scheme
As below:

https://www.agpd.es/portalwebAGPD/index-ides-idphp.php
https://www.agpd.es/portalwebAGPD/revista_prensa/revista_prensa/2017/notas_prensa/news/2017_07_13-ides-idphp.php
https://www.agpd.es/portalwebAGPD/temas/reglamento/common/pdf/Certificacion/ESQUEMA_AEPD_DPD_PUBLICO_1.0.pdf

Monitoring of approved codes of conduct

Let us assume for a moment that we have a perfect code of conduct, the best that you could ever write, already approved, recorded and released by the supervisory authority, and so – at this point – you should only “hope” that itwill be adopted by users for which it was drawn. Here, we imagine… Read More »

Guidelines DPIA … for whom / for what ??

On 4.4.2017 the WP has adopted the “Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk” for the purposes of Regulation 2016/679” the question is  why, for whom and for what. The answer is inside the document and is not a secondary matter because if… Read More »

Ethically GDPR

On last 15 March, during the three-days Clusit Security Summit, has been held in a full room of Atahotel Expo Fiera Rho-Pero, a meeting entitled “Practically GDPR” presented and moderated by Dr. Vallega in the formula of the “round table” with speakers – in addition to the president of Clusit – from companies representative of… Read More »

DPO: the responses of the Privacy Authority to frequently asked questions

  Here come the answers of the Privacy Aythority to frequently asked questions asked about the DPO (ex art. 37 Reg UE 2016/679) Below the link in both Italian and English http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/5930300 http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp243_annex_en_40856.pdf   Please find here below the answer n. 10 that in my opinion integrates and responds to the discussion that followed the… Read More »