Article 29 WP announces new Social Media Working Group

In light of the recent Cambridge Analytica scandal, the Article 29 WP has announced that it fully supports investigations by national DPAs concerning the collection and use of personal data through our omnipresent use of social media, declaring that it will create a Social Media Working Group to work on the matter. Read the official press release ...

Data breaches under the GDPR: A Webinar with Tresorit CEO and co-founder Istvan Lam

Want to know how to handle data breaches under the GDPR? Join me and Tresorit CEO and co-founder Istvan Lam on April 25th 2018 for a webinar where we will help you understand what exactly is considered a data breach under the GDPR, when you have to report an incident and to whom, who is liable for ...

Italian Data Protection Authority first semester 2018 inspection plan

On February 1st 2018 the Italian Data Protection Authority (DPA) published the inspection plan for the first semester of 2018. According to this inspection plan, the Italian DPA will focus its controls on processing activities of health data for research purposes, rating the solvency of enterprises, national statistical systems, the Italian Public System of Digital Identity ...

New Publication | Controversies and Challenges of Trustmarks: Lessons for Privacy and Data Protection Seals

My latest academic publication, "Controversies and Challenges of Trustmarks: Lessons for Privacy and Data Protection Seals", has recently been published in Privacy and Data Protection Seals, IT & Law Series Volume 28, distributed for T.M.C. Asser Press by Springer. My contribution explores data protection seals and their relative challenges and controversies, highlighting significant aspects from the ...

Only 70 days left. Are you ready?

In just 70 days the European Union will have a single set of data protection laws, the long-awaited General Data Protection Regulation. The Regulation will not only protect the fundamental right to privacy and personal data protection of individuals, but in harmonising national legislations will facilitate compliance for businesses.  

Data Protection becomes a right Suriname

I am honoured to have been contracted by the Surinamese Ministry of Trade Industry and Tourism to draft the Privacy and Data Protection Law of the Republic of Suriname.  The law was presented last week to all stakeholders and media and will now go through the official law making process.  As a privacy professional there is no ...

La mia intervista su Millionaire: Privacy diventa anche un’opportunità

Non perdete la mia intervista su Millionaire dove parlo della valorizzazione dei dati e l’opportunità di business che la privacy può darci, in quanto può produrre un vantaggio competitivo e un tangibile ritorno sull’investimento. PRIVACY, PROTEZIONE DEI DATI, CYBERSECURITY di Lucia Ingrosso, Millionaire (pp. 44-47): «Al di là degli obblighi burocratici, c’è una sfida da cogliere. L’uso ...

EC publishes Communication on General Data Protection Regulation

On 24 January 2018 the European Commission  published a Communication to the European Parliament and the Council Stronger protection, new opportunities - Commission guidance on the direct application of the General Data Protection Regulation as of 25 May 2018. The Communication: details the opportunities new European data protection legislation will provide explains what the EC and ...

Privacy Shield passes Commission’s annual review

Today the European Commission published its first annual report on Privacy Shield, which is of fundamental importance with respect to international data transfers, having implications for both the EU and US economies. After one year, the Commission has confirmed that Privacy Shield is fit for its purpose, protecting the data of subjects whose data is ...

Council proposes new rules for analytics

In early September the Council reviewed the draft of the new e-Privacy Regulation (“EPR”) - previously published by the European Commission on 10 January 2017 -  which allows the use of first-party and third-party analytic cookies without express consent of the end-user. Among other changes to the new EPR, the Council has proposed amendments to Article 8, concerning ...