Landmark ECHR ruling decides privacy rights of Spanish supermarket cashiers covertly filmed by security cameras were not violated

On 17 October 2019 The European Court of Human Rights (ECHR) issued its judgment in the López Ribalda and Others v. Spain case, ruling that there had been “no violation of Article 8 (right to respect for private and family life) of the European Convention on Human Rights, and, unanimously that there had been no ...

Personal Data Protection as the New Competitive Edge: Generating Socially Responsible Corporate Behaviour

Last Friday I held my inaugural lecture as Professor of Privacy, Cybersecurity, and IT Contract Law at the Faculty of Law - European Centre for Privacy & Cybersecurity at Maastricht University. During my lecture I introduced the research activities that I would like to further develop at Maastricht University in a multidisciplinary setting that includes ...

EDPD Opinion 23/2018

The European Data Protection Board (EDPD) recently published its Opinion 23/2018 on Commission proposals on European Production and Preservation Orders for electronic evidence in criminal matters (Art. 70.1.b) which was approved on 28 September 2018.  The Opinion comes in light of the April 2018 Commission two complementary legislative proposals aiming to foster coordination among EU Member State authorities ...

Scenari internazionali della data protection alla luce del nuovo Dlgs 101/2018

Intervistato da Federprivacy, spiego gli scenari internazionali della data protection alla luce del nuovo D.lgs. 101/2018, durante una pausa della mia docenza al Master Privacy Officer e Consulente della Privacy. Guardate qui.

Another victory for privacy as Brazilian GDPR is approved

Following approval by the Brazilian Congress of the new "Brazilian GDPR" this past July, the President of Brazil has approved the Lei Geral de Proteção de Dados Pessoais or “LGPD”, aiming to improve privacy standards and personal data protection in the country.   The new Brazilian privacy legislation, Law n. 13.709/2018, amends previous privacy-related legislation in the country, namely ...

#PrivacyShield does not provide adequate data protection for EU citizens

On 5 July 2018 MEPs passed a resolution (303 votes to 223, 29 abstentions) to suspend Privacy Shield starting from 1 September 2018 until the United States is in full compliance with the terms of the agreement. Members of the European Parliament in doing so have called upon US authorities to remove companies that misuse personal ...

Data Protection as a Corporate Social Responsibility

I've been saying it for quite some time, but it is becoming ever-more clear that Data Protection in itself can represent a new form of Corporate Social Responsibility. No present or forthcoming legal framework (whether it be the EU’s much-discussed General Data Protection Regulation or new competition rules) will ever be able to effectively regulate our ...

The New Surinamese Privacy and Data Protection (SPDP) Law

On 3 May 2018 I officially presented the Surinamese Privacy and Data Protection (SPDP) Law to the Parliament. The reaction was positive and Members of the Parliament were interested in understanding the key provisions of the SPDP Law, acknowledging the need in the country to establish the fundamental right to personal data protection and, more ...

Coordinated approach to #ArtificialIntelligence for Europe

On April 25th the European Commission published an official communication "Artificial Intelligence for Europe {SWD(2018) 137 final}" in which it stressed the importance of having a coordinated approach to AI in order to take full advantage of the benefits that it can bring to EU member states and to society in general. In fact, in early April 24 ...