20110218 - Sicurezza e diritto alla protezione dei dati personali

The teaching of "Security and Protection of Personal Data - Privacy Legal Clinic" (7 CFU), within the scientific-disciplinary sector IUS/09 "Institutions of Public Law", aims to involve students in carrying out practical activities, based on the theoretical notions that will be provided to them in the first part of the course, according to the "learning by doing" method, also through a series of simulations carried out in the classroom.

The importance of this teaching is the awareness that the protection of data, their secure processing and the security of the networks and tools with which the data are processed are now a priority.

Cyber attacks and the security aspects of data and information have long been one of the main tools for conducting hostile activities to the detriment of every public and private operator of national, international and strategic importance.

In recent years, both in Italy and abroad, the defence of data and information has been viewed with growing concern, and efforts have been made to regulate the protection of cyberspace and databases of national and strategic interest, as well as critical infrastructures and the overall national security perimeter.

In this context, the security of personal data, information the right to the protection of personal data, codified at the legislative level in the European Regulation No. 679/2016 in several Recitals and in Article

32 as well as in other points of the GDPR as well as in the Code on the Protection of Personal Data (Legislative Decree No. 196/2003), represents an important point both for the principle of confidentiality and protection of the individual's data and for the protection of databases from the attacks (not only cyber) to which they are often subjected. At the same time, all cybersecurity legislation also represents a fundamental and ambitious objective that can only be achieved through the creation of a national strategic framework for the security of cyberspace.

A comprehensive protection strategy that balances the protection of citizens' rights and the security of databases in a fair and transparent manner.

Therefore, the right to privacy, understood both as the protection of confidentiality and the protection of personal data, has now become firmly established in law.

The course aims to deepen the study of individual IT security topics, both technical and legal. The lectures are not only theoretical, but above all are conducted in a practical and applicative manner with classroom demonstrations (also participated in by the students through group work with targeted workshops) on IT security management tools and classroom simulations. There will be insights into the realities of business and public administration with analysis of critical profiles. What is happening in the world of IT security, what are the old and new threats, will be discussed. Particular space will be given to the strategies to be adopted by the various professional roles that will be indispensable in the future to compete with the legal and technical challenges that await us and our young people.

Topics such as:

-general concepts of data security and computer security and their reflection in the legal provisions of our legal system, also with reference to the typical conduct of cyber attacks and the importance of the Human Factor, illegal activities against the computer domicile, personal data and information;