In a piece published on the 15th April 2017 in the Quotidiano Nazionale (a daily which features articles from three Italian newspapers, Il Resto del Carlino, Il Giorno and La Nazione), Giusella Finocchiaro offered her...
Should payment descriptions for bank transfers be considered sensitive data? Conflicting case law from the Italian Court of Cassation
The Italian Court of Cassation has recently been called on to deal with the issue of whether payment descriptions for bank transfers qualify as sensitive data, in cases in which they specify indemnity payments for...
Heavy fines for privacy violations for five money transfer companies
The Italian DPA has imposed fines totalling over 11 million euros on five money transfer companies which had unlawfully processed more than one thousand users’ personal data in order to bypass anti money-laundering...
Italian Government’s answer to the dramatic rise in cybercrime
The latest report from Clusit (the Italian Association of Internet and IT Security) states that 2016 was the worst year ever for the evolution in cyber threats and their impact. The Interministerial Commitee for the...
Italian DPA: reputation rating harms human dignity
The Italian Data Protection Authority has established that a “reputation rating” project violates the provisions of the Personal Data Protection Code and impacts negatively on human dignity. The project, which was...
Recognise reliable sources of information as the antidote to “post-truth”
Voted the Oxford Dictionaries’ international word of 2016, so-called “post-truth” refers to an apparently new concept. The compound word relates to all those circumstances in which objective facts are less influential...
France: from 2017 the “right to disconnect” comes into force.
On 1st January 2017 France brought into force a law on the “right to disconnect”, which aims at banning office emails outside working hours. Conceived as a means to combat an increase in stress, linked to compulsive out...
UE: proposed new measures for the protection of private life and personal data in electronic communications as an addition to the privacy regulation
On 10th January 2017 the European Commission presented proposals for a Regulation on electronic communications to complete the European Union framework on the protection of personal data. The regulation on privacy and...
The Privacy Shield framework is under the scrutiny of the European Court of Justice
The Privacy Shield agreement, which regulates cross border data transfer flows between the European Union and the United States and which recently replaced the previous Safe Harbor agreement, is once again under...
UNCITRAL starts up a new Working Group on Identity Management
The 54th session of UNCITRAL Working Group IV on Electronic Commerce brought to a close work on the regulation of “Electronic Transferable Records”, following which a new Working Group on Identity Management was formed...
European Court of Justice: IP addresses are personal data, even if they allow indirect identification
A recent judgment by the European Court of Justice stated that IP addresses can be considered as personal data in that they can be used to identify a user by turning to the authorities or ISP providers. The point was...
What to do if a video ends up on the Net? – Giusella Finocchiaro interviewed by Vanity Fair
This is a summary of the interview given by Prof. Giusella Finocchiaro to Vanity Fair, in which she was invited to explain certain legal aspects underlying some particular recent news items regarding online privacy...
