Session in English interpreted into Italian / Sessione in inglese con la traduzione in italianoTwo years into the COVID-19 pandemic, we have reached an appropriate standpoint during which to reflect on the lessons we have learnt so far. On a pan-European level, we witnessed the introduction of parallel measures such as legislative proposals, states of emergency, passenger locator forms, contact tracing applicat...

Session to introduce practitioners to GDPR certification, what is it why would you get it, how to get it? 

Introduction The constant and rapid evolution of the digital landscape directly influences the roles and responsibilities of professionals tasked with safeguarding data privacy and ensuring regulatory compliance. This is especially highlighted by recent EU legislations, such as the Digital Services Act, Digital Markets Act, Data Act, Data Governance Act, together with European Data Sp...

Introduction The number of compliance regulatory frameworks is getting higher and higher, which can often feel like navigating a maze of rules and requirements. However, compliance sandboxes offer opportunities for innovation to stay ahead of the curve. This session explains the concept of compliance sandboxes, which is a controlled environment where regulators and industry experts co...

Introduction From the GDPR to the ePrivacy Directive and beyond, Europe has established a comprehensive regulatory framework for data processing, some of which have their own implementation scheme with dedicated bodies. This session will discuss data regulations interplay and oversight in practice. Key questions and objectives...

Introduction The panel of this session will examine the significance of cross-border accountability in the field of data processing, in order to ensure accountability and demonstrate compliance with data protection regulations. The speakers will discuss and compare available mechanisms, practices, and regulatory frameworks for enhancing transparency in these activities.  

Introduction Following last year's discussion, this session will discuss and explore the possibility to support convergence and interoperability in the field of data protection certification between three major international data protection normative frameworks: Convention 108+ of the Council of Europe, the EU GDPR, and the Global CBPR Forum. It will also explore and discuss different...

Introduction In democratic societies, the protection of individuals’ privacy is closely connected to the preservation of civil liberties, which in turn highlights the essential role that privacy rights play in sustaining democratic principles and fostering civic engagement. This enriching session will focus on the multifaceted ways in which privacy and democracy intersect, shaping the...

The foundation of GDPR compliance lies in clearly defined legal bases for the processing of personal data. While the appropriate application of Article 6 and 9 of the GDPR to standard processing activities is sometimes already difficult, these challenges vastly increase when applied to AI training. The complex data processing activities involved therein, as well as the concrete personal data that is collected and used, turn GDPR-com...

Introduction The revised Convention 108 of the Council of Europe is being ratified by a growing number of countries. It will soon reach the required threshold to trigger the entry into force of the convention, as well as bring a paradigm shift in the landscape of global data governance. This session will discuss the key implications of this treaty, in addition to its role in shaping t...