Privacy and data protection

The Firm regularly offers to its clients legal assistance in the field of personal data protection and supports them in the identification of the means of protection against risks for privacy and personal data, in relation to clients’ production and organizational contest and pursuant to principle of accountability, privacy by design and privacy by default.  In particular, the Firm has gained significant experience in the creation and implementation of documentation necessary and useful to regulation of the data and treatment flows, provided for by UE Regulation 2016/679 (GDPR) and Italian Legislative Decree 196/2003 (Privacy Code) as amended by Legislative Decree 101/2018.The Firm provides assistance in drafting contracts for the appointment of Data Processor, in drafting joint controllers agreement, in the arrangement of  acts concerning the appointment of persons authorized to process personal data; the Firm also provides assistance in the mapping of personal data treatments in particular in relation to the number of treatments and their principal characteristics (e.g..: records of processing activities), with particular attention to the types of risks, to probability of occurrence, to safety measures that have been or will be adopted;  in pin-pointing of best practices to prevent high risk situations (e.g.: internal practices to be applied in the event of personal data breach); in examination as to whether the condition for specific measures provided for in the European law (e.g. legal opinion on the recurrence of the conditions for the appointment of Data Protection Officers); in drafting privacy information and privacy policies for Data Subjects, where are specified which data are processed, why, how and for how long.