Italy

New whistleblowing guidelines reviewed by the Italian Data Protection Authority

9 December 2025 1 min read

By Tommaso Erboli

At a glance

  • The Italian Data Protection Authority (Garante Privacy) reviewed two draft resolutions by the Italian Anti-Corruption Authority on whistleblowing guidelines.
  • The proposals cover new internal reporting guidelines and updates to external reporting guidelines.
  • The aim is to ensure whistleblowing channels are consistent, secure, and efficient.
  • Key issues include email-related risks, mandatory data protection impact assessments with tech providers, retention periods, and shared channels with strict access controls.

The Italian Garante Privacy has examined two draft resolutions by the Italian Anti-Corruption Authority on whistleblowing; one introducing new internal reporting guidelines and another updating external reporting guidelines. Both aim to make reporting channels more consistent, secure, and efficient.

The guidelines were developed in close consultation with Garante Privacy to ensure full protection of whistleblowers’ identities, report content, and related personal data. Key considerations include mitigating risks linked to email use, conducting data protection impact assessments with technology providers, defining retention periods, and allowing shared reporting channels between entities where robust access controls are in place.

More to explore

Ministry of Work opens public consultation on a new draft law to enhance whistleblowers' protection

Spain

Ministry of Work opens public consultation on a new draft law to enhance whistleblowers' protection

A new draft law clarifies and consolidates whistleblower protections already present in Spanish law.

3 December 2025 2 min read
The Spanish Independent Authority for Whistleblower Protection postpones the deadline for business' to report internal reporting systems

Spain

The Spanish Independent Authority for Whistleblower Protection postpones the deadline for business' to report internal reporting systems

Spanish Independent Authority for Whistleblower Protection delays whistleblower system notification deadline pending online form launch.

16 October 2025 1 min read
Amendments to the Whistleblower law in Japan create new obligations, penalties and enforcement powers

Japan

Amendments to the Whistleblower law in Japan create new obligations, penalties and enforcement powers

Japan has taken a significant step toward strengthening protections for whistleblowers with the passage of the 2025 Amendment to the Whistleblower Protection Act.

16 July 2025 2 min read
Enhancing whistleblower protection in Spain: Establishment of an independent reporting body (Update)

Spain

Enhancing whistleblower protection in Spain: Establishment of an independent reporting body (Update)

Spain have implemented the EU Whistleblowing Directive and established an independent body responsible for external reporting. 

9 June 2025 2 min read
1 November 2025 deadline to submit information on whistleblowing reporting channels (Update)

Spain

1 November 2025 deadline to submit information on whistleblowing reporting channels (Update)

The deadline comes two months after the Independent Authority for Whistleblower Protection commences operations on 1 September 2025.

12 August 2025 1 min read
New whistleblower protections

United Arab Emirates

New whistleblower protections

The Financial Audit Authority strengthens governance framework with new decisions on whistleblower protections.

10 July 2025 1 min read