Categoria: Data protection and IT
-
PRIVACY AUTHORITY V. BOCCONI: THE SUPREME COURT DECIDES.
With the ruling published on 13 May 2024 no. 12967, the first civil section of the Court of Cassation ruled on the use of artificial intelligence systems: the use of technology for the supervision of exams must be accompanied by a rigorous assessment of the impact on data protection and documented and accessible security measures.…
-
THE ITALIAN DATA PROTECTION AUTHORITY HAS SANCTIONED A MUNICIPALITY FOR THE INSTALLATION OF A VIDEO SURVEILLANCE SYSTEM IN PROXIMITY OF THE EMPLOYEES’ ATTENDANCE DETECTION SYSTEMS.
Last April, the Municipality of Madignano was sanctioned by the Data Protection Authority for having installed a video surveillance system inside its offices in violation of national and European provisions on the protection of personal data and the Workers’ Statute. This activity was deemed to be an unlawful processing of personal data and the Data…
-
THE FINAL APPROVAL OF THE AI ACT BY THE EUROPEAN COUNCIL AND THE NEXT STEPS.
The European Council recently approved the AI Act, marking a crucial milestone in the regulation of artificial intelligence (AI) within the European Union. This legislative act represents a significant step towards establishing a clear and harmonized legal framework for AI, while simultaneously ensuring the protection of fundamental rights of European citizens and promoting technological innovation.…
-
DECISION NO 69/2024 OF THE CONSTITUTIONAL COURT: A REGIONAL REGULATION GOVERNING THE PROCESSING OF PERSONAL DATA IS UNCONSTITUTIONAL.
In its decision No. 69 of 24 April 2024, the Constitutional Court declared illegitimate Article 3 of Puglia Region Law No. 13 of 2023 on the installation of video-surveillance systems, for violation of the obligations deriving from Italy’s membership of the European Union and for invasion of the State’s exclusive legislative competences in the field…
-
EMPLOYER HELD LIABLE FOR PRIVACY DAMAGES CAUSED BY EMPLOYEES: EUROPEAN COURT OF JUSTICE RULING
The European Court of Justice ruled that employers remain liable for privacy damages caused by their employees, even if the employees violate instructions. While exemptions may apply if the employee acted autonomously, the employer must demonstrate this. Within the realm of personal data protection, a recent ruling by the European Court of Justice has reaffirmed…
-
THE DATA PROTECTION AUTHORITY ACCREDITS THE MONITORING BODY TO VERIFY COMPLIANCE WITH THE CODE OF CONDUCT FOR TELEMARKETING AND TELESELLING ACTIVITIES.
With Order No. 148 of 7 March 2024, the Data Protection Authority approved the final version of the Code of Conduct for telemarketing and teleselling activities and announced the accreditation of the Monitoring Body as a subject delegated to control activities. The Data Protection Authority accredited the Monitoring Body (OdM) to verify compliance with the…
-
EMAIL METADATA: NEW REQUIREMENTS FOR EMPLOYERS.
The Italian Data Protection Authority issued a guidance measure last Dec. 21 regarding the storage of e-mail metadata in the employment context, highlighting the need for limited storage and the adoption of specific safeguards by employers. The guidance measure issued by the Garante highlights the risk arising from the use of cloud-based e-mail management computer…
-
THE ENTRY INTO FORCE OF THE DATA ACT, A NEW STEP TOWARDS THE CREATION OF A EUROPEAN SINGLE DIGITAL MARKET.
On 11 January 2024, the Data Act, the new European Data Regulation on “harmonised rules on fair access to and use of data”, entered into force. It is part of the broader European strategy to create a single digital market and to acquire the Union’s leadership in the data sector and which will allow a greater…
-
THE DELICATE DANCE BETWEEN ARTIFICIAL INTELLIGENCE AND PRIVACY: ITALIAN DPA’S INVESTIGATION INTO WEBSCRAPING.
The Privacy Authority launches an investigation of websites on protection from the so called webscraping: the technique of automatically extracting data from web pages. All websites will be subjected to the authority’s scrutiny. In the ever-evolving world of artificial intelligence (AI), the Data Protection Authority is working to preserve the sensitivity of personal information in an…
-
THE NEW PAID VERSION OF FACEBOOK AND INSTAGRAM IN EUROPE: CONCERNS ABOUT GDPR COMPATIBILITY.
Subscribing to the ad-free version or giving consent to profiling to continue enjoying Facebook and Instagram for free? Why has Meta introduced this new business model and what are the consequences in terms of personal data protection. As of 6 November 2023, Meta Platforms has modified its policy, introducing a “pay or okay” business model…