Skip to main content
SpringerLink
Log in

Italian National Report: Data Protection in the Internet

  • Chapter
  • First Online:
Data Protection in the Internet

Part of the book series: Ius Comparatum - Global Studies in Comparative Law ((GSCL,volume 38))

  • 934 Accesses

Abstract

This Report points out that in a uniformed legal environment, such as the EU, the differences in data protection practices depend on the general context in which those norms are inserted. The areas in which one can register significant divergences are: data protection as a personality right; data retention for police and judicial investigations; data processing and rights of workers; media reporting; right to be forgotten. The Report also highlights new areas of interest: the complex relationship between data protection and consumer protection; the commodification of data; damages for loss of data and unlawful processing.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 139.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 179.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 179.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    CJEU 30 May 2006 in joint Cases C-317/04 and C-318/04, European Parliament v. Council of the European Union which annuls Council Decision 2004/496/EC of 17 May 2004 on the conclusion of an Agreement between the European Community and the United States of America on the processing and transfer of PNR data by Air Carriers to the United States Department of Homeland Security, Bureau of Customs and Border Protection, and Commission Decision 2004/535/EC of 14 May 2004 on the adequate protection of personal data contained in the Passenger Name Record of air passengers transferred to the United States Bureau of Customs and Border Protection.

  2. 2.

    CJEU 13 May 2014 in Case C-131/12, Google Spain v. Costeja holding that processing of personal data is carried out in the context of the activities of an establishment of the controller on the territory of a Member State, within the meaning of that provision, when the operator of a search engine sets up in a Member State a branch or subsidiary which is intended to promote and sell advertising space offered by that engine and which orientates its activity towards the inhabitants of that Member State.

  3. 3.

    CJEU 6 October 2015 in Case C-362/14, Schrems v. Data Protection Commissioner (Ireland) holding that the Commission Decision 2000/520/EC of 26 July 2000 pursuant to Directive 95/46 on the adequacy of the protection provided by the safe harbour privacy principles and related frequently asked questions issued by the US Department of Commerce, by which the European Commission finds that a third country ensures an adequate level of protection, does not prevent a supervisory authority of a Member State, within the meaning of Article 28 of that directive as amended, from examining the claim of a person concerning the protection of his rights and freedoms in regard to the processing of personal data relating to him which has been transferred from a Member State to that third country when that person contends that the law and practices in force in the third country do not ensure an adequate level of protection.

  4. 4.

    CJEU 26 July 2017, Opinion in Case 1/15 setting stringent conditions for the compatibility of the Draft agreement between Canada and the European Union on the Transfer of Passenger Name Record data from the European Union to Canada with Articles 7 and 8 and Article 52(1) of the Charter of Fundamental Rights of the European Union.

  5. 5.

    Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation). For some of the many Italian Commentaries on the GDPR, see: Bravo (2018); Califano and Colapietro (2018); De Franceschi (2017); Di Resta (2018); Finocchiaro (2017); Pizzetti (2016); Riccio et al. (2018).

  6. 6.

    Directive (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data, and repealing Council Framework Decision 2008/977/JHA.

  7. 7.

    Directive (EU) 2016/681 of the European Parliament and of the Council of 27 April 2016 on the use of passenger name record (PNR) data for the prevention, detection, investigation and prosecution of terrorist offences and serious crime.

  8. 8.

    Proposal for a Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal data in electronic communications and repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications) COM/2017/010 final—2017/03 (COD).

  9. 9.

    Published, inter alia, in Il diritto dell’informazione e dell’informatica (2001), p. 710; Giustizia civile (2002) I, p. 437; Foro italiano (2001) I, c. 1299 (with notes by Palmieri, Pardolesi and Granieri).

  10. 10.

    Published in Guida al diritto (2016), pp. 43, 66.

  11. 11.

    See above fn. 6 and 7.

  12. 12.

    Law 20 May 1970, n. 300.

  13. 13.

    Deliberazione n.53 del 23 novembre 2006 “Line e guida in materia di trattamento di dati personali di lavoratori per finalità di gestione del rapporto di lavoro alle dipendenze di datori di lavoro privati” (available at www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1364939).

  14. 14.

    Published in Foro italiano (2012) I, c. 1421; and in Rivista italiana di diritto del lavoro (2013) 1, II, p. 113.

  15. 15.

    Published in Diritto e giustizia online 11 July 2013.

  16. 16.

    Provvedimento del Garante del 29 luglio 1998 “Codice di deontologia relativo al trattamento dei dati personalinell’esercizio dell’attività giornalistica”.

  17. 17.

    Published in Il diritto dell’informazione e dell’informatica (2012), p. 452 (with note by Frosini at p. 911).

  18. 18.

    Published in Foro italiano (2017) I, 2989 (with note by Pardolesi). The case was decided after a referral to the CJEU (decision 9 March 2017 in Case C-398/15, Manni v. Camera di Commercio Lecce).

  19. 19.

    Published in Responsabilità civile e previdenza (2017), p. 837 (with note by Foglia).

  20. 20.

    Published on the AGCM https://www.agcm.it/component/joomdoc/allegati-news/PS10207_chiusura.pdf/download.html.

  21. 21.

    Il diritto dell’informazione e dell’informatica (2017), p. 371 (with note by Giannone Codiglione).

  22. 22.

    Il diritto dell’informazione e dell’informatica (2017), p. 390 (with note by Giannone Codiglione).

  23. 23.

    Directive 2019/770 of the European Parliament and of the Council of 20 May 2019 on certain aspects concerning contracts for the supply of digital content and digital services.

  24. 24.

    EDPS, Opinion on the Proposal for a Directive on certain aspects concerning contracts for the supply of digital content, n. 4/2017, p. 9. See also EDPS, Privacy and competitiveness in the age of big data: The interplay between data protection, competition law and consumer protection in the digital economy (2014), Brussels, p. 8ff. A much more firm position has been taken by the EU Article 29 Data Protection Working Part, Guidelines on consent under Regulation 2016/679 (28.11.2017–10.4.2018): “As data protection law is aiming at the protection of fundamental rights, an individual’s control over their personal data is essential and there is a strong presumption that consent to the processing of personal data that is unnecessary, cannot be seen as a mandatory consideration in exchange for the performance of a contract or the provision of a service” (at para. 3.1.2).

  25. 25.

    See Thobani S (2016) I requisiti del consenso al trattamento dei dati personali, Rimini.

  26. 26.

    See Resta G, Zeno-Zencovich V (2018) Volontà e consenso nella fruizione dei servizi in rete, in Rivista trimestrale diritto e procedura civile, p. 351.

  27. 27.

    Published in Foro italiano (2015) I, c. 120.

  28. 28.

    Published in Diritto & Giustizia (2017) 9.2.2017 (with note by Valerio).

References

  • Bravo F (2018) Il “diritto” a trattare dati personali nello svolgimento dell’attività economica. Cedam – Wolters Kluwer, Milan

    Google Scholar 

  • Califano L, Colapietro C (eds) (2018) Innovazione tecnologica e valore della persona. Il diritto alla protezione dei dati personali nel Regolamento UE 2016/679. Editoriale Scientifica, Naples

    Google Scholar 

  • De Franceschi A (2017) La circolazione dei dati personali tra privacy e contratto. ESI, Naples

    Google Scholar 

  • Di Resta F (2018) La nuova ‘Privacy europea’: I principali adempimenti del regolamento UE 2016/679 e profili risarcitori. Giappichelli, Turin

    Google Scholar 

  • Finocchiaro G (ed) (2017) Il nuovo regolamento europeo sulla privacy e sulla protezione dei dati personali. Zanichelli, Bologna

    Google Scholar 

  • Pizzetti F (2016) Privacy e il diritto europeo alla protezione dei dati personali. Il Regolamento europeo 2016/679. Giappichelli, Turin

    Google Scholar 

  • Riccio GM, Scorza G, Belisario E (eds) (2018) GDPR e normativa privacy. Wolters-Kluwer, Alphen aan den Rijn

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Università degli Studi Roma Tre, Rome, Italy

    Vincenzo Zeno-Zencovich

Authors
  1. Vincenzo Zeno-Zencovich
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Vincenzo Zeno-Zencovich .

Editor information

Editors and Affiliations

  1. Law School, University of Lisbon, Lisbon, Portugal

    Dário Moura Vicente  & Sofia de Vasconcelos Casimiro  & 

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this chapter

Check for updates. Verify currency and authenticity via CrossMark

Cite this chapter

Zeno-Zencovich, V. (2020). Italian National Report: Data Protection in the Internet. In: Moura Vicente, D., de Vasconcelos Casimiro, S. (eds) Data Protection in the Internet. Ius Comparatum - Global Studies in Comparative Law, vol 38. Springer, Cham. https://doi.org/10.1007/978-3-030-28049-9_9

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-28049-9_9

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-28048-2

  • Online ISBN: 978-3-030-28049-9

  • eBook Packages: Law and CriminologyLaw and Criminology (R0)

Publish with us

Policies and ethics

Search

Navigation