The genesis of the Single Statement Form 212 was tumultuous. Its appearance was not the result of an organic, natural process of simplifying the process of determining taxes and duties, of declaring and collecting them, but rather one of compromise solutions to end the many hesitations and tax measures hard to understand even by professionals.
GDPR (Regulation 679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC), which will apply from 25 May 2018 (hereinafter referred to as “GDPR”), covers all processing of personal data, including personal data of employees.
After having dealt with a problem of practical interest for companies in the December 2017 issue of our newsletter in terms of GDPR requirements, we intent to cover in this article another topic of major interest for companies: when must they assess the impact of their processing of personal data activities and, if so, how do they make this assessment?
The end of 2017 brought us a number of important changes in the field of public procurement, following the legislator’s motivation to refine and streamline the public procurement system, and to reform the ex-ante control function of the award of public procurement contracts / framework agreements, of sector contracts / framework agreements and works concession and service concession contracts.
With the coming into force of the new European General Data Protection Regulation (GDPR), in less than 6 months from now (18 May 2018), this article addresses the various interpretations of privacy professionals, but also the concerns of the business teams regarding the special status of the Data Protection Officer (DPO). Is the person appointed as a DPO under a conflict of interest, when also employed in this area by the data controller (the company that appointed him)?
