The Italian Data Protection Authority, the Garante, has imposed a sanction of 12.251.601 € to a telecom operator for illegally processing the personal data of millions of users for telemarketing purposes. This is the fourth similar sanction that the Garante imposes on a telecom operator with a script that always looks the same. Entire databases of telephone numbers that passed from one provider to another without the necessary checks that had been obtained with the consent of the data subjects. Security problems due to alleged telephone operators requesting the sending of IDs via whatsapp. Therefore the Garante prevented the telecom operator from using lists obtained through third parties. The operator will also have to implement security systems that regulate access to its database and will have to ensure that this database complies with the rules on consent, as required by the GDPR.
The book, edited in digital format by the Italian Garante and IAPP, includes a contribution from our Managing Partner Rocco Panetta
The Guidelines 05/2020 replace the previous version adopted by Article 29 Working Party on 10 April 2018
A brief summary of the interdisciplinary fact-finding investigation jointly conducted by the Italian Data Protection Authority, the Competition and Market Authority and the Communication Authority.
The Garante has published the last newsletter on its website. (link)
The Garante published an opinion on a draft bill proposing measures against absenteeism in the Public Administration. The draft bill would introduce the public employees' biometric identification. (link)
The new edition of the “Master for privacy professionals and privacy officers (between the legislative decree n. 196/2003, GDPR and the harmonization decree n. 101/2008)", organized by Fondazione Lelio Basso, will start soon. (link)