fbpx

Download free GDPR compliance checklist!

Tag Archives for " DPA "

WP29 on financial data transfers, guidance schedule

The Article 29 Working Party, the collected data protection authorities in the EU, released more information today regarding work completed in its recent June plenary session. It includes extensive new information on records transferred to non-adequate third countries’ financial authorities and details on when to expect further guidance on GDPR implementation.

Source: WP29 on financial data transfers, guidance schedule

Will The Consent Collected Before GDPR Still Be Valid?

The “Guide on the Application of the European Personal Data Protection Regulation” published by the Italian DPA states, in the “Recommendations” at the foot of the consensus form, that: “The consent obtained before May 25, 2018 remains valid if it has all of the above characteristics.

Source: Will The Consent Collected Before The Effective Date Of Gdpr Still Be Valid?

Italian DPA’s Annual Report previews future GDPR enforcement action

On June 6, the Italian Data Protection Authority, the Garante, presented its 2016 Annual Activity Report, focusing on several current data privacy issues and highlighting its efforts with regard to the upcoming entry into force of the General Data Protection Regulation in May 2018.

Source: Italian DPA’s Annual Report previews future GDPR enforcement action

UK ICO Stresses Importance of Preparing for the GDPR and Addresses the ICO’s Role Post-Brexit

With just under one year to go before the EU General Data Protection Regulation (“GDPR”) becomes law across the European Union, the UK Information Commissioner’s Office (“ICO”) has continued its efforts to help businesses prepare for the new law.

Source: UK ICO Stresses Importance of Preparing for the GDPR and Addresses the ICO’s Role Post-Brexit

Italian DPA’s adopts useful decision on legitimate interests

1 June 2017 The Italian data protection authority (‘Garante’) announced, on 25 May 2017, in its monthly newsletter, that it had ruled against the application of Belron Italia s.p.a. for a decision under Article 24(1)(g) of the Personal Data Protection Code, Legislative Decree No. 196/2003 (‘the Privacy Code’), on the balancing of the controllers’ interests with the rights of data subjects, in relation to the creation of a database that would record the personal data of customers who request a quote for the replacement of their car windows.

Source: Italy: Garante’s decision “provides useful elements to companies looking to rely on” legitimate interests

Italian DPA issues its guidelines on the GDPR

The European privacy regulation (GDPR) can now rely on detailed guidelines from Italian data protection authority on how to comply with it. After the French and the Dutch data protection authorities, the Italian privacy regulator, Garante per la protezione dei dati personali, (the “Italian DPA “) issued its 6 step methodology on the GDPR which aims at also increasing awareness on the most relevant changes introduced: 1. More detailed consent and broader legitimate interest As already provided by the current regime, any type of processing of personal data needs to have a legal basis justifying it.

Source: ITALY: The privacy authority issues its guidelines on the GDPR

German DPA Publishes English Translation of Standard Data Protection Model

On April 13, 2017, the North Rhine-Westphalia State Commissioner for Data Protection and Freedom of Information published an English translation of the draft Standard Data Protection Model (“SDM”). The SDM was adopted in November 2016 at the Conference of the Federal and State Data Protection Commissioners.

Source: German DPA Publishes English Translation of Standard Data Protection Model : : Privacy & Information Security Law Blog

>