Share This Article
The Italian Data Protection Authority (DPA) has run an inspection on 11 telephony and Internet service providers as to the term and modalities of retention of traffic data.
As a general principle, personal data cannot be retained for longer than the term necessary for the purpose for which they have been collected. Also, in relation to traffic data, Italian data protection law provides that telephone traffic data have to be retained for 24 months, while Internet traffic data have to be retained for 12 months for investigation and judiciary purposes. Moreover, stringent security measures have been ordered by the Italian DPA in relation to the modalities of storage of traffic data. As part of investigation referred above, the Italian DPA challenged to 9 companies the storage of traffic data for a period longer than allowed, in two instances the lack of storage of traffic data for the required period and reported to criminal authorities the crime of lack of implementation of security measures in the storage of traffic data with reference to one investigated company.
As a general principle, personal data cannot be retained for longer than the term necessary for the purpose for which they have been collected. Also, in relation to traffic data, Italian data protection law provides that telephone traffic data have to be retained for 24 months, while Internet traffic data have to be retained for 12 months for investigation and judiciary purposes. Moreover, stringent security measures have been ordered by the Italian DPA in relation to the modalities of storage of traffic data. As part of investigation referred above, the Italian DPA challenged to 9 companies the storage of traffic data for a period longer than allowed, in two instances the lack of storage of traffic data for the required period and reported to criminal authorities the crime of lack of implementation of security measures in the storage of traffic data with reference to one investigated company.
This investigation is likely to lead to a more prudent approach by telephony and Internet companies, including online gaming operators, that often do not comply with the required security measures and keep traffic data for periods that in some cases are even indefinite.
Do you want to know more about the above? Feel free to contact me, Giulio Coraggio.
Do you want to know more about the above? Feel free to contact me, Giulio Coraggio.
(Visited 1 times, 1 visits today)
