Making technology user (and data protection) friendly

04 october 2019

New technologies are often a source of wonder, but they can also be a source of concern. There are many reasons for this, one being the lack of transparency in certain modern processing operations, which could provoke confusion, and even suspicion, among data protection and cybersecurity experts and non-experts alike.

It is for this reason that it is so important to clarify from the very start of a new technology’s lifecycle the terms and conditions of any data processing, especially those that involve innovative technologies that many people might not be familiar with or easily understand. It is up to the controller - those who are responsible for determining how the data is processed and for what purpose - to determine that the proposed data processing operations are fair and transparent and to clearly explain them to users.  

Not only do controllers have a legal obligation under both the General Data Protection Regulation (GDPR) and the equivalent rules for the EU institutions, to provide this information, but it is in their interest to do so, in order to maintain and build consumer trust. If controllers do not explain how technologies work, as well as their personal data processing operations, they may lose this trust. The information that controllers are legally obliged to provide includes the name of the controller in the data processing, for which purposes data is processed, to whom personal data may be transmitted and for how long data will be stored. Individuals must also be informed about their rights in relation to the data processed.

All of this information needs to be communicated in a concise, transparent, intelligible and easily accessible form, using clear and plain language. This becomes even more important when communicating with minors. The information should be provided in writing, usually in the form of a data protection notice, available either online or on paper. If requested by an individual, it can also be provided orally.

 

Retrieved from https://edps.europa.eu

News archive

 

Firm news

lug2

02/07/2026

Obblighi del titolare del trattamento in caso di uso di sistemi di AI

L' utilizzo di sistemi di AI per il trattamento dei dati comporta la necessita' per il Titolare del trattamento di rivedere ed aggiornare tutti la documentazione sulla privacy, ivi incluse le informative

lug2

02/07/2026

Obblighi del datore di lavoro in caso di utilizzo di sistemi di AI in azienda

L’articolo 11 della Legge 23 settembre 2025, n. 132 (“Legge AI”) sancisce i principi fondamentali per un uso etico e responsabile dell’AI. Tale disposizione, nel riaffermare la

lug2

02/07/2026

Autorità nazionale anticorruzione - Comunicato 15 maggio 2026[3][1] Approvazione della delibera n. 148 del 1° aprile 2026: «Approvazione delle modifiche e integrazioni apportate allo “Schema di bando tipo n. 1/2023 aggiornato al decreto legislativo 31 dic

L'Autorità nazionale anticorruzione (ANAC), nell'adunanza del Consiglio del 1° aprile 2026, ha approvato la seguente delibera: delibera n. 148 del 1° aprile 2026 «Approvazione

Lawyer News

lug2

02/07/2026

Il DL 100/2026 mette in pausa la "rivoluzione" dei tribunali

<p>L’<a href="https://onelegale.wolterskluwer.it/document/10LX0001006304ART18"