The decision of the Data Protection Authority regarding the retention of email metadata might have a severe impact on the cybersecurity strategy of businesses operating in Italy.
The Italian Privacy Authority, the Garante, released an information note with detailed guidelines on how to defend personal data published online by public and private entities from web scraping as part of the training of artificial intelligence (AI) systems.
In three recent decisions, the Italian Privacy Authority sanctioned the Lazio Region after a ransomware attack suffered in the summer of 2021 that caused a shutdown of the regional healthcare system and prolonged disruption even for several months.
DLA Piper decided to lodge a contribution to the consultation of the Italian data protection authority, the Garante, on the retention of metadata of employees' e-mails.
The Garante issued the largest ever GDPR fine in Italy against ENEL Energia, which, however, shows deficiencies in the enforcement procedures that should be improved to benefit privacy-related values across Europe.
In a highly discussed (and criticized) move, Italian Privacy Authority (the Garante) has mandated a dramatic shift in email metadata retention policies relating to employees emails’ metadata.
The Court of Rome cancelled the GDPR fine of EUR 26.5 million issued by the Italian data protection authority against ENEL, one of the largest energy companies in the world because it was issued too late, after the expiry of the procedural terms.
The web scraping of information and personal data by artificial intelligence (AI) systems for their training has come under the scrutiny of the Italian privacy authority.
According to the Italian data protection authority, a DPO cannot play the role of data processor at the same time.
The Italian Privacy Authority issued a decalogue of rules on artificial intelligence in the healthcare that sets out principles that can be applicable to both public and private companies using AI.