Tag Archives: GDPR

A checklist to adapt to GDPR

Adapting to GDPR can be a rather complex task: is a substantial Regulation composed of 99 articles and 173 recitals. I thought useful, at least for me, to elaborate a reasoned summary, which directs the mental process to see if and how to adjust business procedures to achieve compliance. As with all summaries, of course,… Read More »

How to prepare to comply to GDPR

The GDPR was born one year ago (on the 27th April, published on GUE on 4th May 2016) and many have not yet outlined an adjustment plan. There is only one year left to comply to (the deadline is established on 25th May 2018). Some data protection authority of each EU Member State have published… Read More »

Guidelines DPIA … for whom / for what ??

On 4.4.2017 the WP has adopted the “Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk” for the purposes of Regulation 2016/679” the question is  why, for whom and for what. The answer is inside the document and is not a secondary matter because if… Read More »

ePrivacy Regulation Proposal and GDPR

The European Data Protection Supervisor (EDPS) has published an Opinion on the Proposal for a Regulation on Privacy and Electronic Communications (ePrivacy Regulation), which will complement the GDPR within the European Data Protection Framework. Buttarelli appreciates several positive aspects of the Proposal and also the fact that the legislator has adopted some of its previous… Read More »

Ethically GDPR

On last 15 March, during the three-days Clusit Security Summit, has been held in a full room of Atahotel Expo Fiera Rho-Pero, a meeting entitled “Practically GDPR” presented and moderated by Dr. Vallega in the formula of the “round table” with speakers – in addition to the president of Clusit – from companies representative of… Read More »

GDPR in practice

Everybody is talking about GDPR in every session at Security Summit this year, whatever the topic, but in practice what companies are doing to get prepared? Alessandro Vallega started from here to introduce the conference dedicated by Europrivacy to the new European Regulation, on the second day of the Summit organized by Clusit in Milan.… Read More »

DPO: the responses of the Privacy Authority to frequently asked questions

  Here come the answers of the Privacy Aythority to frequently asked questions asked about the DPO (ex art. 37 Reg UE 2016/679) Below the link in both Italian and English http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/5930300 http://ec.europa.eu/information_society/newsroom/image/document/2016-51/wp243_annex_en_40856.pdf   Please find here below the answer n. 10 that in my opinion integrates and responds to the discussion that followed the… Read More »

When the “right to be forgotten” is an opportunity

Few days ago at the  Polytechnic of Milan, in the Aula Magna Carassa – Dadda, Campus Bovisa attended by nearly 450 people, it has been held an extremely interesting conference. During the event emerged – even if incidentally – a short debate on the “right to be forgotten” and its usefulness / viability  (here for… Read More »