digital economy regulation

The decree allows the processing and commercialisation of financial customers' personal data with the prior and express authorisation of the data owner, and introduces payment initiation services.

In a decision delivered on 1 August 2022, the Court of Justice of the EU found that the processing of personal data which can disclose the sexual orientation of an individual constitutes processing of sensitive data under the EU General Data Protection Regulation.

The Italian data protection authority ordered TikTok not to rely on the legitimate interest basis when using personal data stored in users’ devices for profiling and personalising advertising. The Garante’s decision found that the change in the legal basis violated the e-Privacy Directive as well as the Italian personal data protection law.

European Parliament and the Council agreed on more elaborate broadband connectivity targets as part of the 2030 Digital Decade Policy Programme (DDPP). A non-binding recital refers to the question of whether and how over-the-top players (OTTs) should contribute to telecoms infrastructure to achieve the 2030 broadband connectivity targets.

This third report on the final text of the Digital Markets Act goes through the list of 22 obligations for gatekeepers, some of which must be implemented directly whereas others are susceptible to further specifications. It also explains how the European Commission can update the list to address new practices that are unfair or limit the contestability of platform markets.

The Council of the EU endorsed on 18 July 2022 its provisional agreement with the European Parliament on the Digital Markets Act (DMA). The DMA will possibly enter into application in 1Q 2023, and undertakings designated as gatekeepers might have to comply with the DMA obligations before the end of 2023.