The Italian Data Protection Authority: the plan of inspection activities for the second half of 2023
We inform you that with resolution dated 3 August 2023, the Italian Data Protection Authority announced the plan of inspection activities limited to the period July – December 2023.
Among the activities under investigation, we highlight telemarketing activity, facial recognition and compliance with the guidelines on cookies and other tracking tools.
THE ITALIAN DATA PROTECTION AUTHORTY ACTIVITIES PLAN
In specific terms, the inspection activities of the Italina Data Protection Authority will focus on the carrying out of inspections in the main following areas:
- statistical and scientific research sector, with specific reference to technical and organizational provisions (e.g. pseudonymization);
- the energy sector, with regard to the processing of personal data carried out by operators (e.g. activation of unsolicited contracts, telemarketing activities);
- facial recognition, which includes the processing of biometric data, also in employment relationships.
The inspection activity will continue with regard to digital identity managers (SPID) and those on whom the managers rely to issue trust services, as well as service providers using SPID and CIE.
Inspection activities will continue, also online, on compliance with the guidelines on cookies and other tracking tools. In addition, further inspections will be carried out on public and private entities in order to verify compliance with personal data protection provisions.
THE INSPECTIONS
The Italian Data Protection Authority states that the inspection activity will include at least 35 audits, which will also be carried out with the support of the Financial Police. Lastly, the supervisory authority will be able to conduct further investigations ex officio, on the basis of reports and complaints received.
*****
We remain at your disposal for any clarification.