Direct Marketing: a phenomenon that is now essential in the business and commercial practices of any company, that nonetheless still raises questions of great importance when it comes to protecting the privacy of users and consumers. A meeting to trace the regulatory evolution, understand the implementation issues and the various potentialities of the national and European legislation, and address the risks of improper or fraudulent uses of these...

Valutare l’eventuale gap tra le aspettative con cui il Codice di Condotta è nato e la realtà applicativa ad un anno dalla sua approvazione.Fare emergere gli eventuali impatti eccessivamente onerosi a carico delle imprese aderenti o di quelle che vogliono comunque conformarsi al Codice di Condotta.Discutere di eventuali spunti di miglioramento delle regole del Codice e della sua interazione con le altre iniziative di contrasto al telemarketing illegale.

The foundation of GDPR compliance lies in clearly defined legal bases for the processing of personal data. While the appropriate application of Article 6 and 9 of the GDPR to standard processing activities is sometimes already difficult, these challenges vastly increase when applied to AI training. The complex data processing activities involved therein, as well as the concrete personal data that is collected and used, turn GDPR-com...

Introduction Experts on this panel will investigate the latest developments in Privacy Enhancing Technologies by examining their effectiveness in protecting user data and fostering trust in online environments. The panel will also address the emerging trends and evaluate their potential impact on privacy landscapes, which is helpful in navigating the ever-evolving terrain of privacy r...

The adequacy requirement plays a significant role in EU data protection law. The third country must provide adequate data protection to make personal data transfer free, i.e., treat the transfer as if it happens within the EU. A third country must pass the assessment conducted by the European Commission to do so. The doctrine describes the assessment as not transparent enough and influenced by the political background. There are few...

Introduction As Europe continues to strengthen its cybersecurity framework in response to evolving threats and challenges, understanding the intricacies of this legislative landscape is essential for org...

Introduction This Welcome Reception invites you to discover the Privacy MelodIA: An original musical composition on data protection, performed in an outstanding setting and surrounded by the largest collection of Tintoretto’s paintings. 

The International Cooperation track serves as platform for dialogue, exchange, and collaboration, where we get to explore innovative solutions and build meaningful partnerships beyond borders and across various disciplines. This session offers an introductory discussion that brings together an esteemed panel of high-level speakers and experts, such as the Italian Minister of Justice, US Federal Trade Commissioner, Pr...

Introduction This session will discuss major national data regulation developments, with a focus on British, Canadian, and Indian regulations. Key questions and objectives What are the implications of these regulatory evolutions?  

In un' era in cui i dati sono diventati il nuovo petrolio, è fondamentale comprendere come le normative stanno cambiando e cosa significa per le aziende, le istituzioni e i cittadini europei. In qualità di esperti di Asso Dpo in  questa sessione parleremo dei punti chiave della European Digital Strategy e delle nuove legislazioni europee che impattano sul trattamento dei dati.AI ACT: Come la "fame" di d...

Introduction The panel of this session will examine the dynamic interplay among various European Data Regulations, including the Digital Markets Act (DMA), Digital Services Act (DSA), Data Act (DA), Artificial Intelligence Act (AIA), and Market in Crypto-assets Regulation (MICA). It will also focus on unraveling the complexities surrounding these regulations and offer insights into ov...

This panel will discuss emergent technologies that may reduce AI risks and possible regulatory responses to such technology. 

In un contesto in cui gli agenti AI assumono compiti sempre più sofisticati — dalla rappresentanza nelle interazioni digitali fino alla gestione autonoma di dati personali — si aprono interrogativi cruciali: può un agente artificiale rappresentare legalmente una persona? Quali diritti e doveri si innescano nella delega digitale di sé? Come si tutela la privacy in un contesto dove l’identità può essere “replicata” e “agita” da una macchina? Nel dibattito interverranno i rappresentanti dell’Aut...

With international data transfers under increasing regulatory and judicial scrutiny, organizations must adapt to evolving compliance challenges. From the European General Court’s ruling in Bindl v Commission to ongoing discussions around the EU-US Data Privacy Framework, the need for redundancy in GDPR transfer tools to avoid overreliance on a single transfer mechanism is crucial. This panel will explore key legal developments, risks, and ...

Age assurance is a growing requirement for online safety, but one that comes with clear interdependencies with data protection. Requirements for highly effective age assurance have to be considered alongside data minimisation requirements under the GDPR. The limitations of working in silos must be overcome, and one way of doing so is via a multistakeholder dialogue that brings data protection regulators, safety regulators, academics, companies an...

Il ruolo del DPO sta evolvendo con le nuove tecnologie e normative, affrontando sfide legate alla governance e alla protezione dei diritti. L'incontro esplorerà l'evoluzione del ruolo, la relazione con il vertice aziendale e l'importanza del monitoraggio continuo anche in relazione al bilanciamento degli interessi in gioco.  Gli obiettivi sarebbero dunque- Evoluzione del ruolo del DPO: Indagare come il ruolo del DPO si stia adattando alle nuove tecnologie e alle sfide digit...

This session will take a deep dive into the evolving process of assessing AI’s impact on fundamental rights, transitioning from traditional Data Protection Impact Assessments (DPIA) to the Fundamental Rights Impact Assessment (FRAIA). The speakers will explore how to practically apply these assessments in AI development and deployment, ensuring that privacy and human rights remain at the forefront. 

Under European law, a Transfer Impact Assessment is required when transferring personal data to third countries that are not recognized as having adequate data protection standards. It is the responsibility of the data controller to conduct the Assessment, ensuring among other factors that they evaluate the legal framework of the recipient country. This session will provide practical, hands-on guidance on how to effectively carry out a Transfer I...

The Privacy Symposium is delighted to invite you to a unique musical experience on Thursday, 15 May at 6:30 PM, where the Quartetto Pegreffi will take the audience on a musical journey inspired by Venice’s atmosphere. The concert will present a selection of pieces ranging from refined baroque elegance to rich impressionistic colours. The programme reflects the ambience and charm of the surroundings, offering a moment of pause and appreciation in the midst of the Privacy Symposium....