However, things are not that simple. The presence of Spid (activated with 40.5 million digital identities) allows you to approach the objectives of the PNRR, which require the 70% of citizens have an active user by June 2026. Cie, for his part, is still at the starting blocks: only 7.3 million to 16 May 2025. It is therefore clear that the government cannot think of the loosening of the plug to Spid.
How you can protect yourself against the double spid -wang
If there are no definitive solutions from a technical point of view, users are everything that remains to defend themselves. The only solution, according to things, is that of Check constantly The various operators to check whether no “duplication” has been generated by some attackers.
‘The procedure is quite complex“Explains Christian Bernieri, professional DPO and expert in the field of data protection.”Each operator has a different procedure and in many cases it is necessary to face a long and complicated process that also provides for the sending of a large number of documents and personal information“. Just more than all this must be performed with a certain frequencySince the requests would at the moment enable the situation to photograph the situation.
According to Bernieri, the best strategy is from Exploit one of the prerogations guaranteed by the GDPR. “The General Data Protection Regulation makes the access instrument available for European citizens for access to data, which offers two advantages. First of all, it has very specific characteristics at a formal level and prescribed the same communication for all managers. Secondly, the fact that it has a judicial basis makes it more effective and the managers must respond to respond within 30 days“.
How you can submit the request in practice
Bernieri has one lamp that can be used To send the request to access data.
Subject: Request access to data based on art. 15 GDPR – Spid active for CF XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
I have subscribed, xxxxxxxxxxxxxxxxxxxx, born in XXXXXX on 28 May 1899, tax code xxxxxxxxxxxxxxxxxxx, as interested and on agreement with Article 15 of the GDPR, I ask your respectable company of the existence.
In the case of a positive answer, I ask you to carefully and quickly ensure the suspension of these services.
I do not expect that I have activated one of the services mentioned above and that if they are active, I disconnect the authorship of the request for activation and complain a theft of identity that will be reported to the competent authorities immediately.
I have been thanking you for your precious cooperation since now.
The request, specifies the expert, must be accompanied by Company digital Or from a copy of the identity document.
The problem of the frequency to send communication remains. “A periodic question is of course more effective because it is more common. The risk that someone will act between the different requests in one of the ‘windows’ will continue to exist“Explains Bernieri.”In theory, the only way to eliminate the risk once and for all Register a Spid in your name with all operators“.
A solution, this, which may seem like a kind of “colombo -egg” to make the scam of the double spid harmless, but who has a contraindication: Not all managers offer the service for free And in the near future the The number of services paid is increasing.
#protect #double #spid #wang