The risky practice of buying data

Ever more frequently organisations are buying lists for marketing purposes from data brokers without taking necessary data protection-related precautions. This is an extremely risky practice.  As the Information Commissioner's Office points out in it’s recent “Investigation into the use of data analytics in political campaigns Investigation update” report - (see pages 14-15) - organisations must ...

Cambridge Analytica and the Concept of Fairness by Design

Just a few days ago the ICO published its "Investigation into the use of data analytics in political campaigns Investigation update" report that provides details with respect to the office of Information Commissioner Elizabeth Denham's investigation of the widespread use of data analytics in electoral campaigns.  The report largely focuses on Facebook and Cambridge Analytica as ...

Let’s not forget about Data Protection by Design

One month after the EU's General Data Protection Regulation has become directly applicable in all EU Member States, I would like to take the opportunity to consider the importance of what I deem to be a fundamental pillar of privacy and data protection: Data Protection by Design/Default (“DPbD”). What is data protection ‘by design’ and ‘by default’? ...

A.I. – Artificial Insanity: Reflections on the resilience of human intelligence by Luca Bolognini

My fellow founding Partner at ICT Legal Consulting, Luca Bolognini, recently published a fascinating book that explores the digital world through a visionary lens. The book is entitled "A.I. - Artificial Insanity: Reflections on the resilience of human intelligence" and reflects on the future of artificial intelligence in the era of the Internet of Things and Big Data ...

#PrivacyShield does not provide adequate data protection for EU citizens

On 5 July 2018 MEPs passed a resolution (303 votes to 223, 29 abstentions) to suspend Privacy Shield starting from 1 September 2018 until the United States is in full compliance with the terms of the agreement. Members of the European Parliament in doing so have called upon US authorities to remove companies that misuse personal ...

EU-US Privacy Shield at risk

Earlier this month MEPs from the Civil Liberties Committee brought attention to the necessity of better monitoring Privacy Shield by way of a Motion for a Resolution to wind up the debate on the statement by the Commission pursuant to Rule 123(2) of the Rules of Procedure on the adequacy of the protection afforded by the EU-US ...

Starting from July requests for preliminary rulings involving natural persons will be anonymised

By No tags Permalink 0

In light of the GDPR and the forthcoming law that will be applicable to European Union institutions, on 29 June 2018 the Court of Justice announced that it will anonymise the personal data of natural persons in preliminary ruling requests. The decision reflects principles enshrined in the GDPR such as the right to be forgotten and is warmly welcomed. Read ...

Cloud Security Alliance Issues Code of Conduct Self-Assessment and Certification Tools for GDPR Compliance

SEATTLE, WA and LONDON – JUNE 5, 2018 – InfoSecurity Europe Conference – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, today released the CSA Code of Conduct (CoC) Self-Assessment. An essential tool for those charged with General Data Privacy Requirements (GDPR) ...

Non è più sufficiente gestire la Privacy in azienda tramite un’azione una tantum

“Non è più sufficiente gestire la #Privacy in azienda tramite un’azione una tantum: con il #GDPR il processo deve essere continuo. Sorge la necessità di strutturare un vero e proprio Modello Organizzativo Privacy.” - Il mio intervento al Convegno Privacy Unolegal 2018.

European Union Agency for Fundamental Rights Releases its “Handbook on European data protection law – 2018 edition”

The European Union Agency for Fundamental Rights has released the updated 2018 edition of the "Handbook on European data protection law" which provides us with an understanding of the European Union and Council of Europe's applicable data protection legal frameworks. The handbook is particularly useful in that in addition to providing an overview of EU data protection law, it ...