GDPR published on OJEU

Posted on by Federica Romanelli
On May 4, 2017, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation – GDPR) was published on the Official Journal OJ of the European Union L.119/1.   Read more [...]

Guidelines for practical implementation of the GDPR issued by the Italian DPA

Posted on by Federica Romanelli
The Italian Data Protection Authority, Garante per la privacy issued Guidelines for the implementation of Regulation EU/2016/679 on Personal Data Protection (GDPR). The DPA suggests some actions that can be carried out right away to comply with the GDPR and provides a general overview of the major innovations introduced by the legislation. The guidelines are divided into 6 thematic sections: Principles of lawfulness of the processing (Article 6, GDPR); Information and access to personal Read more [...]

Does the GDPR Apply to My Organization? The “Extraterritoriality” of the New European Data Protection Regulation

Posted on by Federica Romanelli
Regulation (EU) 2016/679, the General Data Protection Regulation (GDPR) repeals Directive 95/46/EC and expands on the protection of natural persons with regard to the processing of personal data and the free movement of such data. The GDPR will come into force in May 2018 and will have an expanded territorial scope of application compared to the previous Directive 95/46/EC. What does it mean for businesses? EU establishment triggers GDPR application Before. Under Directive 95/46/EC, Read more [...]

WP29 deems that the ePrivacy Regulation Proposal lowers GDPR’s standards

Posted on by Federica Romanelli
On April 4, 2017, the Working Party 29 (WP29) released Opinion 1/2017 on the Proposed Regulation for the ePrivacy Regulation (2002/58/EC) - wp247 (ePrivacy Regulation Proposal). The WP29 welcomes the Proposal for the Regulation. However, it expressed several points of concern and suggested amendments. The European Commission, along with the European Parliament and the European Council, shall address these concerns and incorporate the changes they deem fit. According to WP29, several aspects Read more [...]

WP29 issues guidelines aiming at GDPR implementation

Posted on by Federica Romanelli
In its plenary meeting held in April 2017, Working Party 29 (WP29) examined certain critical matters regarding the implementation of Regulation 2016/679, the s.c. General Data Protection Regulation (GDPR). After having examined the comments received during the public consultation which ended on February 15, 2017 (see here), WP29 adopted the final versions of several guidelines, and in particular, the ones concerning: Data Protection Officer (DPO); Lead Authority; and Data portability. WP29 Read more [...]