Massimiliano Masnada on Data Protection

Who gets to see inside? The EU’s Operational Rules on Data Access under Article 40 of the DSA

The European Commission has adopted a Delegated Act under Article 40 of the DSA, creating a new framework for vetted researchers to access non-public data from Very Large Online Platforms and Very Large Search Engines. This...more

7/10/2025 / Data Collection , Data Protection , Digital Services , EU , New Regulations , Online Platforms , Regulatory Requirements , Risk Assessment , Transparency

Retention of corporate email metadata, news from the Italian Data Protection Authority

The Italian Data Protection Authority (“Garante per la Protezione dei Dati Personali”) published a provision in which it established that some services for e-mail management are configured to collect and store metadata...more

8/13/2024 / Cybersecurity , Data Protection , Data Protection Authority , Email , Italy

EU moves closer to a unified digital health system with the European Health Data Space Regulation (EHDS)

The European Health Data Space (EHDS) Regulation seeks to overcome significant obstacles in digital health by creating a comprehensive framework for sharing electronic health data. It aims to establish clear rules, common...more

6/11/2024 / Data Privacy , Data Protection , Data Security , Digital Health , EU , General Data Protection Regulation (GDPR) , Health Care Providers

The Italian Data Protection Authority launches public consultation on webscraping

The Italian Data Protection Authority (Garante per la protezione dei dati personali) has launched a public consultation on webscraping. On 22 November 2023, the Italian Data Protection Authority (Garante per la protezione...more

11/27/2023 / Cybersecurity , Data Privacy , Data Protection , Data Security , Italy , Personal Data

Council adopts NIS 2, a renovated framework on Cybersecurity

The NIS 2 Directive ("Directive" or "NIS2") has been approved by the Council. The Directive will be published in the Official Journal of the European Union in the coming days and will enter into force on the twentieth day...more

12/1/2022 / Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security

Data class actions in Europe - and spotlights in Mexico, Russia and the U.S.

The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more

3/8/2021 / Class Action , Cybersecurity , Data Breach , Data Protection , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data , Personally Identifiable Information , Popular

Data class actions in Europe and spotlights in Mexico, Russia and the U.S.

The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more

11/22/2019 / Burden of Proof , Class Action , Cybersecurity , Data Breach , Data Processors , Data Protection , EU , EU Data Protection Laws , European Commission , Evidence , Forum Shopping , General Data Protection Regulation (GDPR) , International Data Transfers , Litigation Strategies , Personal Data , Personally Identifiable Information , Private Right of Action , Risk Management , Russia

GDPR Italian Implementing Decree Has Been Published

On 4 September, the Legislative Decree no. 101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. ...more

9/14/2018 / Cybersecurity , Data Breach , Data Processors , Data Protection , EU , EU Data Protection Laws , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data , Personally Identifiable Information , Popular , Risk Management

Massimiliano Masnada

Hogan Lovells

Popular Topics by This Author

Latest Posts › Data Protection