Author Archives: paolo calvi

About paolo calvi

Data Protection Consultant at Partners4Innovation - P4I. Formerly Data Protection Specialist (within Mediaset Group IT department) and freelance Privacy Consultant. TÜV CDP certification owner as "Privacy Officer".

Record of the processing activities: semplification for SME

At the AssoDPO Congress, Luigi Montuori (Authority’s office), talking about the most recent WP29’s activities, cited a recent “position paper” on the exemption from the Records of processing activities. I remind that article 30(5) states: “The obligations referred to in paragraphs 1 and 2 shall not apply to an enterprise or an organisation employing fewer… Read More »

Data Breach, not just “notification”

Among the new disciplines, introduced by GDPR, the one about the data breach is seemingly the least of the problem. Unlike DPIA and DPO, rated as discussed topics, Data Breach seems to be a clear point. In fact, there aren’t dispute on this topic. Also, WP250 Guidelines (adopted by the WP29 on 10/3/2017) explain and… Read More »

ePrivacy Regulation Proposal and GDPR

The European Data Protection Supervisor (EDPS) has published an Opinion on the Proposal for a Regulation on Privacy and Electronic Communications (ePrivacy Regulation), which will complement the GDPR within the European Data Protection Framework. Buttarelli appreciates several positive aspects of the Proposal and also the fact that the legislator has adopted some of its previous… Read More »

Final DPO Guidelines

Following three months of consultation (with the contribution of Europrivacy as well), Working Party Art29 adopted, on April 5 2017, the final guidelines regarding Portability of Data, Data Protection Officer (DPO) and the criteria for the identification of the “lead authority” according to the GDPR. In addition, the WP29 during the plenary meeting of April… Read More »

GDPR in practice

Everybody is talking about GDPR in every session at Security Summit this year, whatever the topic, but in practice what companies are doing to get prepared? Alessandro Vallega started from here to introduce the conference dedicated by Europrivacy to the new European Regulation, on the second day of the Summit organized by Clusit in Milan.… Read More »

Cyber Crime and Compliance at Milan Politecnico

The headlines go to the Cyber Crime attacks, but ultimately the Compliance remains the main expense leverage in IT security, at least for SMEs. That’s what emerges from the 2016 Survey by the Information Security & Privacy Observatory of the Milan Politecnico School of Management, presented on 2/2 at the conference “Cyber Crime: the invisible threat… Read More »