Paolo Balboni
@paolobalboni.bsky.social
Professor of Privacy, Cybersecurity, and IT Contract Law at Maastricht University & Founding Partner ICT Legal Consulting
The European Commission has published the non-binding Model Contractual Terms (MCTs) for data access and use and Standard Contractual Clauses (SCCs) for cloud computing contracts we drafted in the context of the Expert Group on B2B data sharing and cloud computing contracts! 1/3
November 21, 2025 at 1:50 PM
The European Commission has published the non-binding Model Contractual Terms (MCTs) for data access and use and Standard Contractual Clauses (SCCs) for cloud computing contracts we drafted in the context of the Expert Group on B2B data sharing and cloud computing contracts! 1/3
During today's lecture in my EU and Global Cybersecurity Fundamentals course at the European Centre on Privacy and Cybersecurity (ECPC), Paul Benedek, Thomas Fabry and I will focus on the Network and Information Security (NIS) Directive 2.
November 20, 2025 at 2:34 PM
During today's lecture in my EU and Global Cybersecurity Fundamentals course at the European Centre on Privacy and Cybersecurity (ECPC), Paul Benedek, Thomas Fabry and I will focus on the Network and Information Security (NIS) Directive 2.
Join us for ICTLC's “Global AI and Data Strategy for the Banking and Finance Sector: Strategic Legal Compliance and Governance” webinar!
📅 Date: 19 June 2025
🕒 Time: 15:30 - 17:00 CEST
Register here: ictlc.webinargeek.com/global-ai-an...
📅 Date: 19 June 2025
🕒 Time: 15:30 - 17:00 CEST
Register here: ictlc.webinargeek.com/global-ai-an...
June 3, 2025 at 1:25 PM
Join us for ICTLC's “Global AI and Data Strategy for the Banking and Finance Sector: Strategic Legal Compliance and Governance” webinar!
📅 Date: 19 June 2025
🕒 Time: 15:30 - 17:00 CEST
Register here: ictlc.webinargeek.com/global-ai-an...
📅 Date: 19 June 2025
🕒 Time: 15:30 - 17:00 CEST
Register here: ictlc.webinargeek.com/global-ai-an...
#GDPR: The Italian DPA has fined major energy supplier Acea Energia EUR 3 million in addition to fining agencies and other companies involved www.garanteprivacy.it/web/guest/ho...
May 7, 2025 at 2:16 PM
#GDPR: The Italian DPA has fined major energy supplier Acea Energia EUR 3 million in addition to fining agencies and other companies involved www.garanteprivacy.it/web/guest/ho...
Join our upcoming webinar on "Global AI and Data Strategy for #Telcos: Strategic Legal Compliance and Governance" to explore key strategies for legal compliance, governance, and the future of #AI. 🚀 Register here: ictlc.webinargeek.com/global-ai-an...
April 29, 2025 at 12:37 PM
Join our upcoming webinar on "Global AI and Data Strategy for #Telcos: Strategic Legal Compliance and Governance" to explore key strategies for legal compliance, governance, and the future of #AI. 🚀 Register here: ictlc.webinargeek.com/global-ai-an...
#GDPR stats: The Italian DPA has highlighted that between May 2018 and 31 March 2025, it has received:
- 11,700 #databreach notifications, and
- 317,467 complaints and reports www.gpdp.it/web/guest/ho...
- 11,700 #databreach notifications, and
- 317,467 complaints and reports www.gpdp.it/web/guest/ho...
April 16, 2025 at 2:02 PM
#GDPR stats: The Italian DPA has highlighted that between May 2018 and 31 March 2025, it has received:
- 11,700 #databreach notifications, and
- 317,467 complaints and reports www.gpdp.it/web/guest/ho...
- 11,700 #databreach notifications, and
- 317,467 complaints and reports www.gpdp.it/web/guest/ho...
The long-awaited MCTs and SCCs that we developed to support the implementation of the #DataAct have finally been published! They can now be used to draft, amend, or negotiate #datasharing agreements & #cloudcomputing contracts. Check out my latest article bit.ly/B2BExpertGroup
April 15, 2025 at 3:27 PM
The long-awaited MCTs and SCCs that we developed to support the implementation of the #DataAct have finally been published! They can now be used to draft, amend, or negotiate #datasharing agreements & #cloudcomputing contracts. Check out my latest article bit.ly/B2BExpertGroup
Recommended reading: Gianclaudio Malgieri and Cristiana Santos' article on "Assessing the (severity of) impacts on fundamental rights" www.sciencedirect.com/science/arti...
#GDPR #AIAct #DSA #fundamentalrights
#GDPR #AIAct #DSA #fundamentalrights
March 16, 2025 at 5:47 PM
Recommended reading: Gianclaudio Malgieri and Cristiana Santos' article on "Assessing the (severity of) impacts on fundamental rights" www.sciencedirect.com/science/arti...
#GDPR #AIAct #DSA #fundamentalrights
#GDPR #AIAct #DSA #fundamentalrights
...and this time Zurich is #whereprivacybringsyou! It was such a pleasure to discuss the geopolitical, political, and socioeconomic consequences of AI with Maastricht University's alumni last week during my Star Lecture!
March 16, 2025 at 5:45 PM
...and this time Zurich is #whereprivacybringsyou! It was such a pleasure to discuss the geopolitical, political, and socioeconomic consequences of AI with Maastricht University's alumni last week during my Star Lecture!
The European Data Protection Board has adopted a statement on the implementation of the #PNRDirective in light of the Court of Justice of the EU judgment in case C-817/19. www.edpb.europa.eu/system/files...
March 14, 2025 at 12:51 PM
The European Data Protection Board has adopted a statement on the implementation of the #PNRDirective in light of the Court of Justice of the EU judgment in case C-817/19. www.edpb.europa.eu/system/files...
#GDPR: Interesting case from the CJEU on the right to rectification curia.europa.eu/jcms/upload/...
March 13, 2025 at 9:20 AM
#GDPR: Interesting case from the CJEU on the right to rectification curia.europa.eu/jcms/upload/...
Join me and my fantastic colleagues from @ecpcmaastricht.bsky.social in São Paulo, Brazil from 14-17 April for the ECPC-B #DPO Certification Course! www.maastrichtuniversity.nl/events/data-... #whereprivacybringsyou
March 12, 2025 at 5:32 PM
Join me and my fantastic colleagues from @ecpcmaastricht.bsky.social in São Paulo, Brazil from 14-17 April for the ECPC-B #DPO Certification Course! www.maastrichtuniversity.nl/events/data-... #whereprivacybringsyou
#GDPR: As usual, the Spanish DPA has been keeping busy. According to its latest newsletter, 165 personal #databreach notifications were received in January 2025 www.aepd.es/documento/32...
March 12, 2025 at 8:26 AM
#GDPR: As usual, the Spanish DPA has been keeping busy. According to its latest newsletter, 165 personal #databreach notifications were received in January 2025 www.aepd.es/documento/32...
CJEU: Automated credit assessment: the data subject is entitled to an explanation as to how the decision was taken in respect of him or her curia.europa.eu/jcms/upload/...
February 27, 2025 at 5:40 PM
CJEU: Automated credit assessment: the data subject is entitled to an explanation as to how the decision was taken in respect of him or her curia.europa.eu/jcms/upload/...
Worth a read: ENISA's “Threat Landscape: Finance Sector” report illustrates the significant cybersecurity challenges the sector is facing. Check it out 👉 www.enisa.europa.eu/sites/defaul...
February 26, 2025 at 9:02 AM
Worth a read: ENISA's “Threat Landscape: Finance Sector” report illustrates the significant cybersecurity challenges the sector is facing. Check it out 👉 www.enisa.europa.eu/sites/defaul...
The Irish DPC has submitted its Article 60 draft decision to its EU/EEA counterparts following its inquiry into #TikTok dataprotection.ie/en/news-medi...
February 24, 2025 at 4:29 PM
The Irish DPC has submitted its Article 60 draft decision to its EU/EEA counterparts following its inquiry into #TikTok dataprotection.ie/en/news-medi...
#GDPR: The Italian DPA has published it's inspection plan through June 2025 www.garanteprivacy.it/web/guest/ho...
February 17, 2025 at 10:20 AM
#GDPR: The Italian DPA has published it's inspection plan through June 2025 www.garanteprivacy.it/web/guest/ho...
Italian DPA days no to the use of spy software outside the rules www.garanteprivacy.it/home/docweb/...
February 15, 2025 at 6:13 PM
Italian DPA days no to the use of spy software outside the rules www.garanteprivacy.it/home/docweb/...
OECD report "offers preliminary considerations and potential policy approaches to help guide policymakers in navigating these issues, ensuring that AI’s innovative potential is unleashed while protecting IP and other rights."
www.oecd.org/en/publicati...
HT @montezumachavez.bsky.social
www.oecd.org/en/publicati...
HT @montezumachavez.bsky.social
February 15, 2025 at 6:05 PM
OECD report "offers preliminary considerations and potential policy approaches to help guide policymakers in navigating these issues, ensuring that AI’s innovative potential is unleashed while protecting IP and other rights."
www.oecd.org/en/publicati...
HT @montezumachavez.bsky.social
www.oecd.org/en/publicati...
HT @montezumachavez.bsky.social
The Belgian DPA's Annual report for 2023 shows that nearly half of the 1,292 data breaches notified were caused by human error. www.gegevensbeschermingsautoriteit.be/jaarverslag/...
February 12, 2025 at 11:50 AM
The Belgian DPA's Annual report for 2023 shows that nearly half of the 1,292 data breaches notified were caused by human error. www.gegevensbeschermingsautoriteit.be/jaarverslag/...