On March 22, 2018, the new EU rules against unjustified geo-blocking (Regulation (EU) 2018/302) entered into force and will be applicable starting December 3, 2018. The Regulation aims at abolish discrimination based on nationality and residence. Sellers will have to stop denying access to websites from one Member States to the other, preventing purchases of […]
Carpenter v. United States, 201 L. Ed. 2d 507, 2018 U.S. LEXIS 3844, 138 S. Ct. 2206, 86 U.S.L.W. 4491, 27 Fla. L. Weekly Fed. S 415, 2018 WL 3073916 SCOTUS decided Carpenter vs US: police needs a warrant to search past location data from a suspect’s cellphone On June 22, 2018, the […]
On May 22, 2018, the Garante per la Protezione dei Dati Personali, Italy’s Data Protection Authority (DPA), prohibited a company offering a comparison service for light, gas, mobile line, insurance, mortgages (and other services) on its website (Company) to process for marketing and sales purposes the data collected through a pop-up on its website. The […]
On May 16, 2018, the Garante per la Protezione dei Dati Personali, Italy’s Data Protection Authority (DPA), authorized the transfer of personal data using Binding Corporate Rules, BCR, approved by May 24, 2018. What is BCR. BCRs are a tool to allow the transfer of personal data among branches belonging to the same multinational company […]
Informazionefiscale.it reported an interesting interview with Marco Menegazzo, commander of the Special Privacy Unit of the Italian Guardia di Finanza, who spoke during the Privacy Day Forum held on May 25, 2018, and which dealt with privacy, sanctions and checks under the GDPR. Which checks will be carried out by the Italian authority under the GDPR? […]
On June 5, 2018, the European Court of Justice (CJEU), issued its preliminary ruling in C‑210/16, opining on the definition of data controller, applicable national law, and jurisdiction under EU data protection law according to Directive 95/46/EC. According to the CJEU’s judgement, EU companies that have been advertising through Facebook can be considered data […]
The CNIL, the French Data Protection Authority, has made available a software update to carry out a data protection impact assessment (DPIA). The software update can be downloaded at https://www.cnil.fr… The corresponding Italian version has been developed with the Garante per la protezione dei dati personali. See www.garanteprivacy.it… For more information on how […]
Essay on whether GDPR’s sanctions for violations are covered by Cyber-Insurance. The full text is available at https://www.culhanemeadows.com…
A guide to the insurability of GDPR fines across Europe DLA Piper has partnered with AON to provide insight into the insurability of GDPR fines across Europe ands the potential financial impact of a data breach. The report is available at https://www.dlapiper.com…
In its plenary meeting held in April 2018, Working Party 29 (WP29) examined certain critical matters regarding the implementation of Regulation 2016/679, the s.c. General Data Protection Regulation (GDPR) and adopted several key documents for the preparation of its application on the 25th of May 2018 such as the guidelines on consent and the guidelines on transparency. […]