Legal

After months of hard work, my last book entitled “GDPR & Privacy: awareness and opportunities. The approach with the Data Protection and Privacy Relationships Model (DAPPREMO)” with the Foreword by Wojciech R. Wiewiórowski (EDPS) has been published. In this edition, you can find described the Data Protection and Privacy Relationships Model (its acronym is DAPPREMO) by which I propose a new approach to data protection and privacy. Here is the DAPPREMO logo © Nicola Fabiano - All rights reserved You can find any information on the book and online stores here. ...

Today we read the press release about the decision of the Court of Justice on the Case C-311/18 by which it has been invalided the Decision 2016/1250 on the adequacy of the protection provided by the EU-US Data Protection Shield. That decision is complex, and it needs to be examined carefully, point by point. Transfers of personal data to third countries or international organisations are a very crucial topic that has to be addressed soon by the European Commission both for a new adequacy decision and anyway for new standard contractual clauses. ...

The content of this post is available in PDF for download here: 1. Chronology of events During the last month, i.e. since the focus has increased on the incidence of the COVID-19 pandemic with respect to personal data protection, we have witnessed the publication of the following main measures issued by some institutional bodies: ...

The health emergency related to the #COVID19 pandemic is attracting particular attention in the privacy field, also about possible initiatives regarding the development of specific apps. Today, the European Data Protection Supervisor (EDPS) carried out an intervention entitled “EU Digital Solidarity: a call for a pan-European approach against the pandemic”. In particular, the EDPS intervention states The GDPR clearly states that the processing of personal data should be designed to serve mankind (it was the favourite quote from GDPR for my predecessor Giovanni Buttarelli). ...

The contribution has been published today by Broadband 4 Europe, here. 1. Introduction As is it well-known, the coronavirus pandemic (COVID-19) has profoundly changed our life, habits, communication and interaction between people, ways of working, etc. In essence, we are experiencing a situation that appears surreal because of the consequent behavioural rules that we are obliged to respect with social distancing to fight the battle of COVID-19. This pandemic situation, which in addition to Italy is leading many other states to adopt the most appropriate prevention measures, also entails a series of questions regarding the protection of personal data with which one must confront. The pandemic does not require new rules on the protection of personal data, except in the terms illustrated in more detail below, being sufficient to respect those currently in force. Moreover, in this sense is the statement of the Chair of the European Data Protection Board (EDPB), published on 16/03/2020 entitled “Statement of the EDPB Chair on the processing of personal data in the context of the COVID-19 outbreak”. Andrea Jelinek said: ...

I was invited, as President of the Data Protection Authority of San Marino, to speak at the “5G Italy 2019” event held in Rome. Below is the video of my speech (from minute 2:34:59 to 2:44:26) held on December 3, 2019: my opinion on the role of the privacy supervisory authority regarding 5G and emerging technologies. What is the approach regarding the relationship between personal data protection and emerging technologies? ...

To my work as a lawyer, I wanted to add that of research, combining legal skills with technical ones; it is not simple; indeed, it is very demanding.It is necessary to always keep in mind that researchers must conduct any research activity with scientific rigour and based on objective elements, without neglecting any other contributions already published. The in-depth study phase of research topics is particularly tricky as it is necessary to always pay maximum attention to the object of the analysis and to the aspects that are intended to be highlighted. ...

The Swedish Data Protection Authority fined a school to pay about 20,000.00 euros. The measure is currently available only in Swedish; therefore, we propose the news with a brief comment without further details. Facial recognition system. © Nicola Fabiano - All rights reserved What has it happened? A Swedish school used a facial recognition system on the students to verify their attendance. During the preliminary investigation by the Swedish supervisory authority, the school defended itself by stating that the students expressed their consent. The supervisory authority closed the investigation sanctioning the school. ...

For the second consecutive year, I participated in “The Eleventh International Conference on Evolving Internet - INTERNET 2019”, organised by the International Academy, Research, and Industry Association (IARIA) which was held in Rome from June 30th to July 4th 2019. Furthermore, my participation was also as the chair of the special track “RAIEDP: Robotics, Artificial Intelligence, Ethics and Data Protection” together with my colleague Filippo Bianchini (co-chair). I presented the contribution entitled “The Meaning of ‘Accountability’, ‘Responsibility’ and ‘Liability’ in the GDPR: Proposal for an Ontology”. ...

I am honoured to be a member of the Program Committee of the 8th International Conference on e-Democracy that will be held in Athens on 12-13 December 2019. Below the official communication. Spread the information the about the conference. Dear colleagues, Duetonumerous requests from potential authors, the submission deadline of 8th International Conference on e-Democracy: Safeguarding Democracy and Human Rights in the Digital Age has been extended to August 18, 2019. ...