I've been saying it for quite some time, but it is becoming ever-more clear that Data Protection in itself can represent a new form of Corporate Social Responsibility. No present or forthcoming legal framework (whether it be the EU’s much-discussed General Data Protection Regulation or new competition rules) will ever be able to effectively regulate our ...
On 3 May 2018 I officially presented the Surinamese Privacy and Data Protection (SPDP) Law to the Parliament. The reaction was positive and Members of the Parliament were interested in understanding the key provisions of the SPDP Law, acknowledging the need in the country to establish the fundamental right to personal data protection and, more ...
The Council of Europe Committee of Ministers has approved the modernisation of Treaty No. 108, Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data. The amending protocol will be formally adopted next week by the Committee of Ministers during their annual ministerial session on 18 May 2018 in Elsinore (Denmark). In it's Summary Report on co-operation between the ...
On April 25th the European Commission published an official communication "Artificial Intelligence for Europe {SWD(2018) 137 final}" in which it stressed the importance of having a coordinated approach to AI in order to take full advantage of the benefits that it can bring to EU member states and to society in general. In fact, in early April 24 ...
On 8 March 2018, the Italian Data Protection Authority banned any further processing activities of the Customer Care employees’ data, carried out by an important Italian telecommunication company through a software (namely, Salesforce Arcadia) that handled the calls to subscribers. The software not only processed n data related to the calls of the customers and their ...
On 26 March 2018, the Italian Data Protection Authority published its new “frequently asked questions” related to the figure of the Data Protection Officer (DPO) in the private sphere. The FAQs are a useful tool that can provide addition clarification regarding the figure of DPO together with the Article 29 Working Party (“WP29”) Opinion on ...
In its Position Paper the Article 29 WP provides us with clarification with respect to the obligation to maintain records of processing activities pursuant to Article 30(5) GDPR. The Article 29 WP's position on the derogation from this obligation, specifying that the derogation provided by Article 30(5) is not absolute and that in fact, the article ...
On 11 April 2018, the Article 29 Working Party published its Working Document Setting Forth a Co-Operation Procedure for the approval of “Binding Corporate Rules” for controllers and processors under the GDPR. The document updates the WP 107 and outlines cooperation procedures in line with the GDPR. Some important points to consider: binding corporate rules are to be ...
Only 24 business days before The European General Data Protection Regulation (wet AVG) will enter into effect. Though many companies approach compliance activities as a purely legal matter, the GDPR is more than a necessary business requirement. In this GDPR Workshop, hosted by ICT Legal Consulting International, Professor Dr. Paolo Balboni will present a strategic ...
The European Data Protection Supervisor has called for a smarter approach to information sharing to address challenges relating to security and border management in its Opinion 4/2018 on the Proposals for two Regulations establishing a framework for interoperability between EU large-scale information systems.
Top-tier ICT, privacy & data protection lawyer and Founding Partner of ICT Legal Consulting. Professor of Privacy, Cybersecurity, and IT Contract Law at the European Centre on Privacy and Cybersecurity within the Maastricht University Faculty of Law. President of the European Privacy Association. Lead Auditor BS ISO/IEC 27001:2013 (IRCA Certified).
Read more
CONNECT