Italy’s DPA extends its reach to audit Google’s US headquarters and possibly other companies
The Regulator demands that Google’s privacy notice is tailored to each specific service (such as Gmail, Google Wallet, and Chrome). In order to profile users of its services, Google will have to first obtain their informed consent. This requirement will have to be implemented, via different mechanisms, both for new accounts and for existing Google accounts. Individuals will have to be offered the right to object to profiling. Additional requirements relate to data storage, deletion and anonymization.
The approval of the protocol issued on 10 July 2014 is at (in Italian).
The 2014 protocol (in English)
Privacy Laws & Business has organised a Roundtable together with the Garante in Rome 24-25 March 2015: Managing data protection law risks to your business in Italy
Speakers include companies, lawyers and:
Augusta Iannini, Vice-President, Garante and 9 other speakers from the Garante, Rome
Allegra Migliorini, Chair of the EU Council of Ministers DP Regulation (DAPIX) Committee under Italy’s EU Presidency, Ministry of Justice, Rome
Bruno Gencarelli, Head of the Data Protection Unit, European Commission, Brussels
Rocco Panetta, Head of Privacy & IT Compliance, NCTM (Roundtable host), Rome