Recent Posts by Paolo Balboni

Modernized SCCs adopted by the European Commission

Today, 4 June 2021, the European Commission adopted two sets of much-awaited standard contractual clauses (SCCs). The modernized SCCs mark an important step towards potentially increasing legal certainty in the complex and global data-driven economy. The new SCCs consider the Schrems II decision and the subsequent opinions of the Supervisory Authorities. A transition period of ...

Reflections on three years of the GDPR

In recent weeks I have noticed a growing number of influential figures in the data protection world speaking out against a perceived lack of enforcement of the GDPR, the most influential data protection law known to date. Those in favor of revisiting the seminal law argue, for example, that the One-Stop-Shop mechanism is misguided or ...

Would a US federal privacy law re-establish trusted EU-US data flows?

You might be aware that early last month US Congresswoman Suzan DelBene, Representing Washington's 1st District, introduced the Information Transparency and Personal Data Control Act – in her words “legislation that would create a national data privacy standard to protect our most personal information and bring our  laws into the 21st Century.”   Important aspects of the Information Transparency and Personal Data ...

MORE ATTENTION TO INDIVIDUALS IS THE KEY TO SUCCESSFUL Work from Anywhere (WFA): A few (non-legal) words on “talent on the cloud” and the WFA phenomenon

I am usually requested to express my opinion on cloud services and their legal aspects; but today I want to share some thoughts on “talent on the cloud” and the Work from Anywhere (WFA) phenomenon.  I will consciously refrain from letting my legal thoughts (e.g., in terms of privacy and cybersecurity) kick in (mindful of the fact that it’s ...

Safer Internet Day: The tale of TikTok under the spotlight of the Italian DPA

In light of the 18th edition of Safer Internet Day, which “calls upon all stakeholders to join together to make the internet a safer and better place for all, and especially for children and young people”,  I have decided to dedicate a blog post to the Italian TikTok case.  The case of TikTok The Italian DPA (Garante per la protezione ...

LET’S MAKE 2021 THE YEAR OF TRUE ‘TRANSPARENCY’, A SOCIALLY RESPONSIBLE BEHAVIOR FOR DATA PROCESSING ACTIVITIES

By No tags Permalink

Today, 28 January, is Data Protection Day, an annual celebration of privacy and data protection commemorating the date that Convention 108 of the Council of Europe was first opened for signature. This year, however, I would invite all data protection practitioners, academics, business leaders, educators, politicians, security experts and human rights and privacy activists to ...

AI & Cybersecurity: Reflections on a multidimensional relationship

Earlier this month I was a guest on Episode 47: Innovation and Tech Zoom In of the European Edition of the Breaking Banks Podcast Moderated by Ajit Tripathi. The podcast looks at “European Unicorns, Startups, Founders, Regulators and Leaders innovating the rapidly evolving Fintech scene, with some of the world’s most well-known hosts and influencers in fintech. Produced in cooperation with FintechStage.” LISTEN ...

Expand your professional knowledge with the Lead auditor and consultant training on the CSA GDPR Certification and Code of Conduct

By No tags Permalink

Register today for our online course 17 – 20 November 2020 (from 15:00-19:00 CEST)   Become a qualified Code of Conduct (CoC) auditor and gain an in-depth understanding of how the CSA Code of Conduct for GDPR Compliance works!  Are you a professional wanting to guide organisations toward GDPR compliance? Do you have knowledge about the inner workings of a Code of ...

The importance of having a coordinated incident response plan in place

This is true not only in monetary terms, but information security could even be a question of life and death.   In September 2020, a breaking article confirmed the inevitable - the first death caused by a ransomware attack. The alleged victim is a woman who necessitated urgent medical care and had to be re-rerouted to another hospital as a ...

Schrems II – No legal certainty and no quick fixes! It’s a geopolitical matter before it’s a legal one. “A NEW AGE OF DATA TRANSFERS” PART IV

I just attended today’s online LIBE meeting on possible solutions following the CJEU’s “Schrems II” decision, where it was recognized that the question of data transfers to third countries is fundamentally a geopolitical matter before being a legal one. In this way, legal certainty should be re-established as soon as possible – but such an achievement ...

Recent Comments by Paolo Balboni

    No comments by Paolo Balboni yet.