Court of Justice: a religious community, such as the Jehovah’s Witnesses, is a controller (Judgment in Case C-25/17)

Judgment in Case C-25/17 Tietosuojavaltuutettu v Jehovan todistajat — uskonnollinen yhdyskunta A religious community, such as the Jehovah’s Witnesses, is a controller, jointly with its members who engage in preaching, for the processing of personal data carried out by the latter in the context of door-to-door preaching The processing of personal data carried out in … Continue reading Court of Justice: a religious community, such as the Jehovah’s Witnesses, is a controller (Judgment in Case C-25/17)

Deceived by Design

How tech companies use dark patterns to discourage us from exercising our rights to privacy   by Forbrukerrådet 27.06.2018   "In this report, we analyze a sample of settings in Facebook, Google and Windows 10, and show how default settings and dark patterns, techniques and features of interface design meant to manipulate users, are used … Continue reading Deceived by Design

Consenso Informato (Cassazione civile, sez. I, 02/07/2018, n. 17278)

Cassazione civile, sez. I, n. 17278, 02/07/2018   Fatto FATTI DI CAUSA 1. - Con sentenza del 29 aprile 2016 il Tribunale di Arezzo ha accolto l'opposizione proposta ai sensi del D.Lgs. 30 giugno 2003, n. 196, art. 152 (c.d. Codice della privacy) da AdSpray S.r.l. nei confronti dell'Autorità garante per la protezione di dati … Continue reading Consenso Informato (Cassazione civile, sez. I, 02/07/2018, n. 17278)

Right to be forgotten: M.L. et W.W. c. Allemagne – 60798/10 et 65599/10 – Refus d’obliger des médias à anonymiser des matériaux en ligne anciens à la demande des auteurs d’un crime près de sortir de prison : non-violation

ECHR 237 (2018) 28.06.2018 The public’s right to access archived material online took precedence over the right of convicted persons to be forgotten In today’s Chamber judgment1 in the case of M.L. and W.W. v. Germany (application nos. 60798/10 and 65599/10) the European Court of Human Rights held, unanimously, that there had been: no violation … Continue reading Right to be forgotten: M.L. et W.W. c. Allemagne – 60798/10 et 65599/10 – Refus d’obliger des médias à anonymiser des matériaux en ligne anciens à la demande des auteurs d’un crime près de sortir de prison : non-violation

DPCM 25 maggio 2018 – Criteri e modalita’ per l’individuazione del responsabile della protezione dei dati personali

DECRETO DEL PRESIDENTE DEL CONSIGLIO DEI MINISTRI 25 maggio 2018 Criteri e modalita' per l'individuazione del responsabile della protezione dei dati personali, mediante il quale la Presidenza del Consiglio dei ministri esercita le funzioni di titolare del trattamento dei dati personali, ai sensi del regolamento (UE) n. 2016/679.   (GU Serie Generale n.139 del 18-06-2018) … Continue reading DPCM 25 maggio 2018 – Criteri e modalita’ per l’individuazione del responsabile della protezione dei dati personali

Corte di Cassazione, sez. I Civile, ordinanza 6 febbraio – 4 giugno 2018, n. 14242 – Privacy, risarcimento del danno e onere della prova

  [...] Con il secondo motivo di ricorso (violazione degli artt. 2050, 2697, 2729 c.c. e 15 del d.lgs. n. 196 del 2003 in relazione all’art. 360 comma 1 n. 3 c.p.c.) il ricorrente censura la decisione di merito che ha accolto la domanda pur non essendo stata fornita la prova del danno non patrimoniale … Continue reading Corte di Cassazione, sez. I Civile, ordinanza 6 febbraio – 4 giugno 2018, n. 14242 – Privacy, risarcimento del danno e onere della prova

EDPS Opinion 5/2018 on the principle of Privacy by Design

The possibilities and limits of technology play an increasingly important role in our personal lives and in our societies. The extent to which humans can enjoy their fundamental rights depends not only on legal frameworks and social norms, but also on the features of the technology at their disposal. Recent discoveries of inappropriate use of … Continue reading EDPS Opinion 5/2018 on the principle of Privacy by Design

Handbook on European data protection law – 2018 edition

The rapid development of information technology has exacerbated the need for robust personal data protection, the right to which is safeguarded by both European Union (EU) and Council of Europe (CoE) instruments. Safeguarding this important right entails new and significant challenges as technological advances expand the frontiers of areas such as surveillance, communication interception and … Continue reading Handbook on European data protection law – 2018 edition

Court of Justice: The administrator of a fan page on Facebook is jointly responsible with Facebook for the processing of data of visitors to the page

Luxembourg, 5 June 2018 Judgment in Case C-210/16 Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein v Wirtschaftsakademie Schleswig-Holstein GmbH   The administrator of a fan page on Facebook is jointly responsible with Facebook for the processing of data of visitors to the page The data protection authority of the Member State in which the administrator has its … Continue reading Court of Justice: The administrator of a fan page on Facebook is jointly responsible with Facebook for the processing of data of visitors to the page

The right to data portability in the platform economy: how to free consumers and suppliers from the dictatorship of the platform and increase competition in the EU’s Digital Single Market

Really happy and honored to partecipate at the International PhD Colloquium "Regulating new technologies in uncertain times" at the Tilburg University   The 14th of June I will present my paper: "The right to data portability in the platform economy: how to free consumers and suppliers from the dictatorship of the platform and increase competition … Continue reading The right to data portability in the platform economy: how to free consumers and suppliers from the dictatorship of the platform and increase competition in the EU’s Digital Single Market