Standard Post with Image

Italian’s Personal Data Protection Authority presents the Report on the activities carried out in 2017

On July 10, the Italian’s Personal Data Protection Authority presented the Report on its activities carried out in 2017. The Report contains an analysis on the implementation of privacy legislation in Italy. Additionally, it contains prospects towards which the Authority intends to move with the aim of ensuring a more effective protection of personal data and of providing responses to the challenges posed by new economic models based on data exploitation and the increased need to protect people's fundamental rights. Among the main actions undertaken by the Authority in 2017, are the consolidation of the protection of personal data through transparency and the fight against cyberbullying. In particular, the latter has been developed fostering measures and procedures for the removal of offensive content from the web and allowing the activation of a timely intervention network. The application of the EU GDPR is described in details in the Report. It is worth noting that the Italian DPA has consistently worked with peer EU Authorities in the elaboration of important guidelines. Concerning its supervisory activities, the Authority lists the investigations on a number of dossiers and on data breaches. Conclusively, the Report elaborates on the need for transparency of the Public Administration procedures and in the health sector. The Italian DPA celebrates its twentieth year of activity in 2018.

The report is available, in Italian language, here
Standard Post with Image

New Zealand's Privacy Act to be changed

A new bill on data protection was introduced in New Zealand on March 20. The bill implements measures against the loss of data and promotes people’s confidence that their personal information is secure and will be treated properly. The law follows similar changes taken by the Australian government in February 2018 and will replace the 1993 Privacy Act of New Zealand. The latter did not have mandatory data breach notification regulations. With the new bill, companies will be required to notify data breaches to the Privacy Commission increasing security of data storing and sharing. In addition to data breach notification obligations, the bill aims at strengthening cyber-security through the implementation of measures such as employees’ education, privacy disclosures and security policies.

The original document is available here

A description of the ameliorations introduced by the bill is available here:

Find the 1993 Privacy act of New Zealand here:
Standard Post with Image

India’s cryptocurrency ban has come into force

The ban on cryptocurrency of the Reserve Bank of India (India’s Central Bank) has come into force on July 6, 2018. The related statement of the Bank forbids the provision of services of crypto-related businesses. Since its issuance on the 5th of April, companies have tried to remove the ban petitioning a decision of the Supreme Court to that extent. The related proceeding is still ongoing, and the next hearing in the case is scheduled for July 20. A governmental regulation against cryptocurrencies is expected in early July.

Find the RBI’s original Statement on Developmental and Regulatory Policies here
Standard Post with Image

Uber presents 2017 transparency report

On July 6, 2018 Uber published a report providing a “comprehensive overview of information that was provided to state and local regulators and law enforcement agencies in the U.S. and Canada between January and December 2017”. The report helps to understand the volume of information requests that Uber receives from law enforcement agencies related to criminal investigations involving certain trips riders or drivers. The amount of data produced by Uber has fluctuated from 68 % to 90 % in response to requests from  U.S. law enforcement agencies.

Find the transparency report here
Standard Post with Image

South Wales firm fined for absence of consent for promotional text messages

The practice of sending promotional text messages to 274.423 people without their consent led the UK Information Commissioner’s Office to issue a £60.000 fine against South Wales firm STS Commercial Limited of Bridgend Lsd. The spam text messages promoted payday loans and were sent by the company between November 2016 and January 2017. The Commissioner’s investigation revealed that the control on third-party consent had been insufficient.

A link to the Information Commissioner’s Office news is available here: