Tag Archives: GDPR

Decisions, authorisations & measures: Who will be there and how after the 25th of May 2018?

As the date of 25 May 2018 is approaching, the day on which the EU regulation 2016/679 will come into application, more and more often one wonders what the current legislation will survive after the entry of the GDPR. The answer to this question is still far away but I would like to point out… Read More »

DRAFT ePRIVACY REGULATION: THE COUNCIL OF THE EUROPEAN UNION RELEASED ITS PROPOSED AMENDMENTS

On September 8th, the Council of the EU released its proposed amendments to the draft ePrivacy Regulation (“Regulation”) which has already been the subject of different opinions and draft amendments over the last few months, as highlighted in our previous news. As clarified in the text, this document is only a first redraft of the… Read More »

e-PRIVACY REGULATION PROPOSAL’S DEVELOPMENT – II) Work in progress

On June 9, Marju Lauristin, the Member of the European Parliament (MEP) and Member of the Committee on Civil Liberties, Justice and Home Affairs (LIBE), released a draft report containing amendments to the Regulation. In the preparation of this report, the rapporteur Marju Lauristin has conducted extensive and thorough discussions with the following Committees: draft… Read More »

e-PRIVACY REGULATION PROPOSAL’S DEVELOPMENT – I) Art. 29WP and EDPS’s opinions

As already mentioned in a previous post, on 10 January 2017 the European Commission presented a proposal for a Regulation (the “Regulation”) which is expected to amend the Directive 2002/58/EC (e-Privacy Directive) standardising the current European legal framework for the processing of personal data in the electronic communications sector and whose final approval is expected to… Read More »

WILL THE CONSENT COLLECTED BEFORE THE EFFECTIVE DATE OF GDPR STILL BE VALID?

The “Guide on the Application of the European Personal Data Protection Regulation” published by the Italian DPA states, in the “Recommendations” at the foot of the consensus form, that: “The consent obtained before May 25, 2018 remains valid if it has all of the above characteristics. Otherwise, it is appropriate to work before that date… Read More »

A checklist to adapt to GDPR

Adapting to GDPR can be a rather complex task: is a substantial Regulation composed of 99 articles and 173 recitals. I thought useful, at least for me, to elaborate a reasoned summary, which directs the mental process to see if and how to adjust business procedures to achieve compliance. As with all summaries, of course,… Read More »

How to prepare to comply to GDPR

The GDPR was born one year ago (on the 27th April, published on GUE on 4th May 2016) and many have not yet outlined an adjustment plan. There is only one year left to comply to (the deadline is established on 25th May 2018). Some data protection authority of each EU Member State have published… Read More »

Guidelines DPIA … for whom / for what ??

On 4.4.2017 the WP has adopted the “Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is “likely to result in a high risk” for the purposes of Regulation 2016/679” the question is  why, for whom and for what. The answer is inside the document and is not a secondary matter because if… Read More »

ePrivacy Regulation Proposal and GDPR

The European Data Protection Supervisor (EDPS) has published an Opinion on the Proposal for a Regulation on Privacy and Electronic Communications (ePrivacy Regulation), which will complement the GDPR within the European Data Protection Framework. Buttarelli appreciates several positive aspects of the Proposal and also the fact that the legislator has adopted some of its previous… Read More »