The new guidelines of the Italian DPA on cookies

by Rocco Panetta The new cookie Guidelines and other tracking tools adopted by the Italian Data Protection Authority, the Garante, and published today in the Official Gazette following the public consultation launched last November are a far-sighted measure of great operational detail. Compared to the first text adopted at the end of last year, some […]

If your cookie banner is not compliant, now someone will warn companies

by Vincenzo Tiani On 31 May, Noyb, the non-governmental organisation led by Max Schrems, the activist who led to the invalidation of the agreements between the EU and the US on the transfer of personal data because they were deemed to be insecure, announced that it had developed software that analyses the cookie policies of the most […]

Italian Supreme Court says people must know how algorithms that judge them work

by Vincenzo Tiani On 25 May, precisely on the occasion of the birthday of the GDPR, the General Data Protection Regulation, an important judgment of the Court of Cassation was published on the subject. The ruling clarified a fundamental principle: where an algorithm automatically profiles us with the possible consequence of limiting our rights, the consent given is only […]

Proposals for an EU Digital Green Certificate framework

One of the reasons why I love working in the world of data protection and privacy is that it is a rapidly evolving and changing area of law. This week, the European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) issued a joint Opinion on the data protection aspects of the European […]

Vincenzo Tiani at the Milano Digital Week on Facial Recognition and Mass Surveillance

Vincenzo Tiani, Partner of Panetta & Associati and Senior Consultant of Strand | PTP, will moderate the panel on the use of Facial Recognition for mass surveillance at the Milano Digital Week.The panel, Cities under Surveillance, will take place today at 16:00 online HERE (in Italian only). Guests include:Matteo Navacci, Co-Founder Privacy NetworkLaura Carrer, researcher […]

A change in strategy by the EU DPAs toward social networks

European data protection authorities are lately proving that the GDPR is in good shape to be applied whenever it is needed, also with regard to social networks. Paul Jordan, the IAPP Europe Managing Director, has talked through what is happening in Italy on this front with Rocco Panetta, Strand co-founder and COO, Italy’s Country Leader […]

Regulatory Activism – The Unique Israeli Journey

Amid uncertainty around modernizing the timeworn Protection of Privacy Law, the Israeli privacy regulator has emerged as a dominant driving force. In a series of guidelines and recommendations, the Protection of Privacy Authority aims to fill the void with EU General Data Protection Regulation-like concepts and assumes an unprecedented active role in shaping the privacy […]

Dan Or-Hof – Building Blocks for a Global Data Protection Strategy

VIDEO The Art of Privacy is a video series from OneTrust DataGuidance exploring key privacy and data protection concepts with commentary from industry-leading voices. In this episode, Dan Or-Hof, Founder and Owner of Or-Hof Law, discusses the organizational building blocks that should be considered for a global privacy compliance program. Dan explores the complexities and nuances of the current global privacy landscape, the […]

What is the Digital services Act, the European proposal that could change everything for big tech

On 15 December 2020, the European Commission presented the long-awaited Digital Services Act (DSA). It is a proposal for a European regulation that will change the rules governing the liability of online platforms. The European regulation, once finalised, will replace the eCommerce Directive 2000/31/EC, which has allowed the platforms we know today to grow and […]

5 lessons the U.S. can learn from European Privacy Efforts

The U.S. Can Avoid Mistakes Made By The E.U. in Digital Security No one would disagree that the internet has reshaped the world. Business, government, and people all need information. The question becomes, how do we keep the information safe from criminals, hostile governments, and business competitors? Experts have wrestled with this question since the […]

Do you Have to hire a DPO?

Data protection officers have many tasks as set out in the European General Data Protection Regulation (GDPR). One of the tasks is to ensure that an organization processes its staff’s, customer’s, and provider’s personal information according to the Regulation and to the organization’s ownpolicies. When establishing a new business, it is essential to gain an […]

The Italian Garante publish the draft (in public consultation) of the new Italian guidelines on cookies.

The Italian Data Protection Authority (Garante per la Protezione dei Dati Personali) has launched, on December 10, the public consultation on the new guidelines on cookies.Cookies and other online tracking technologies are at the centre of the most recent legal dynamics.Technological advancement and the increasingly widespread and complex services offered online, make it necessary to […]

Algorithms and driving style, the ADM in the car-sharing services.

In Italy, the installation of algorithms that analyze driving style on cars is taking its first steps. It is an innovation brought by one of the country’s leading car-sharing companies.The purpose at the moment is to improve the maintenance of its fleet of over 2000 cars.But if the algorithm were to have the effect of […]

The CNIL fines two bigtech for the cookies compliance

The CNIL – Commission Nationale de l’Informatique et des Libertés has issued two significant fines (100 million and 35 million) to two bigtech corps. The first corporation is being challenged for: the installation of non-essential cookies without the user’s prior consent; the lack of information in the banner and the difficulty of finding it even […]

The new frontier of the car insurance: drive safe and pay less

A US leading company of the automotive plans to sell the Car Insurance directly to its customers within one year, using the data relating to their driving behaviour. The system, on a voluntary basis, will offer greater discounts to those who respect the rules and speed limits. In the US alone it is expected that […]


The European Commission has published the draft decision and standard contractual clauses (attached), with a view to remodelling SCCs under the new legislation on the protection of personal data and in the light of the “Schrems II” judgment of the EU Court of Justice. SCCs are a useful tool for implementing data transfers outside the […]

risus. dictum facilisis quis Aliquam commodo tristique lectus dolor. mi, Aenean ante.