Category Archives: Data Protection Officer

The ‘good officer’ that controls our data. How to appoint a DPO

The appointment of the Data Protection Officer (DPO) is one of the most controversial points of the implementation of the new Reg. EU 2016/679 on data protection. The Data Protection Authority provides guidance on this matter through a series of FAQs. The DPO is a key figure that is mandatory for public and private health facilities… Read More »

Dpo certification scheme: Spain arrives first!!

AEDP is the first in EU to issue with ENAC a Dpo certification scheme
As below:

Final DPO Guidelines

Following three months of consultation (with the contribution of Europrivacy as well), Working Party Art29 adopted, on April 5 2017, the final guidelines regarding Portability of Data, Data Protection Officer (DPO) and the criteria for the identification of the “lead authority” according to the GDPR. In addition, the WP29 during the plenary meeting of April… Read More »

GDPR in practice

Everybody is talking about GDPR in every session at Security Summit this year, whatever the topic, but in practice what companies are doing to get prepared? Alessandro Vallega started from here to introduce the conference dedicated by Europrivacy to the new European Regulation, on the second day of the Summit organized by Clusit in Milan.… Read More »

Terminology differences between D.lgs 196/2003 and GDPR Regulation (EU) 2016/679

One of the benefits introduced by GDPR is about conforming the terminology at European level. But it is verifiable a disadvantage related to the figures involved, leaving the Italian scheme of D. Lgs. 196/2003 and considering the linguistic difference.                Lgs.196/2003                  … Read More »

DPO: the responses of the Privacy Authority to frequently asked questions

  Here come the answers of the Privacy Aythority to frequently asked questions asked about the DPO (ex art. 37 Reg UE 2016/679) Below the link in both Italian and English   Please find here below the answer n. 10 that in my opinion integrates and responds to the discussion that followed the… Read More »

Mandatory appointment of Data Protection Officer: the Working Party’s position pursuant to art. 29

On 13 December 2016 the European Data Protection Supervisor (Working Party – WP29) issued three documents containing information and recommendations on important novelties on Regulation (right to data portability, D.P.O., Leading Authority), in view of its application, effective from May 25, 2018. With regard to the Data Protection Officer, the guidelines first highlight that the… Read More »

Cyber Crime and Compliance at Milan Politecnico

The headlines go to the Cyber Crime attacks, but ultimately the Compliance remains the main expense leverage in IT security, at least for SMEs. That’s what emerges from the 2016 Survey by the Information Security & Privacy Observatory of the Milan Politecnico School of Management, presented on 2/2 at the conference “Cyber Crime: the invisible threat… Read More »