Data Governance: Ethical and Legal Issues
A.Y. 2025/2026
Learning objectives
Undefined
Expected learning outcomes
Undefined
Lesson period: First four month period
Assessment methods: Esame
Assessment result: voto verbalizzato in trentesimi
Single course
This course can be attended as a single course.
Course syllabus and organization
Single session
Responsible
Lesson period
First four month period
Course syllabus
1. Introduction
2. The fundamental right to personal data protection
4. Data protection definitions
5. General Principles of European Data Protection Law
6. The Legal Conditions relating to processing of personal data;
7. The accountability of the controller and the duties of the processor
8. Cybersecurity and data protection
9. Risk based approach and the setup of a cybersecurity plan
10. Security measures and data protection
11. Pseudonymization and encryption
12. Data breaches and remedies to security incidents
13. The Data Protection Officer (part I)
14. The Data Protection Officer (part II)
15. Cybersecurity regulation in EU
16. Key concepts of criminal law and their application in the cybercrime field
17. Cybercrime regulation: Budapest Convention and UN convention
18. Liability for cybercrimes: individuals, corporations, states
19. Challenges of AI in cybersecurity
20. European regulation on AI systems: the AI Act
21. AI systems and tort liability
22. AI systems and criminal liability
23. Digital investigations and AI-generated evidence
2. The fundamental right to personal data protection
4. Data protection definitions
5. General Principles of European Data Protection Law
6. The Legal Conditions relating to processing of personal data;
7. The accountability of the controller and the duties of the processor
8. Cybersecurity and data protection
9. Risk based approach and the setup of a cybersecurity plan
10. Security measures and data protection
11. Pseudonymization and encryption
12. Data breaches and remedies to security incidents
13. The Data Protection Officer (part I)
14. The Data Protection Officer (part II)
15. Cybersecurity regulation in EU
16. Key concepts of criminal law and their application in the cybercrime field
17. Cybercrime regulation: Budapest Convention and UN convention
18. Liability for cybercrimes: individuals, corporations, states
19. Challenges of AI in cybersecurity
20. European regulation on AI systems: the AI Act
21. AI systems and tort liability
22. AI systems and criminal liability
23. Digital investigations and AI-generated evidence
Prerequisites for admission
No prerequisites are required.
Teaching methods
Lectures and paper and case studies based discussions.
Teaching Resources
1. Handbook on European data protection law - 2018 edition, available at https://www.coe.int/en/web/data-protection
2. G. Fuster - L. Jasmontaite, Cybersecurity Regulation in the European Union: The Digital, the Critical and Fundamental Rights, 2020, available in Open Access at https://link.springer.com/chapter/10.1007/978-3-030-29053-5_5
3. Website on EU Digital Strategy with a focus on cybersecurity regulation: https://digital-strategy.ec.europa.eu/en/policies/cybersecurity-policies
4. P.G. Chiara, Towards a Right to Cybersecurity in EU Law? The Challenges Ahead, 2023, available on SSRN at https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4537093
5. A. Gascón Marcén, The Budapest Convention and the UN Cybercrime Convention negotiations, in A. Segura Serrano (ed.), Global Cybersecurity and International Law, Routledge, 2024
6. S. Gless - E. Silverman - T. Weigend, If robots cause harm, who is to blame? Self-driving cars and criminal liability, in New Criminal Law Review, Vol. 19, Number 3, 2016, 412 ss. [link SSRN: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=2724592]
Additional references will be provided during the classes.
2. G. Fuster - L. Jasmontaite, Cybersecurity Regulation in the European Union: The Digital, the Critical and Fundamental Rights, 2020, available in Open Access at https://link.springer.com/chapter/10.1007/978-3-030-29053-5_5
3. Website on EU Digital Strategy with a focus on cybersecurity regulation: https://digital-strategy.ec.europa.eu/en/policies/cybersecurity-policies
4. P.G. Chiara, Towards a Right to Cybersecurity in EU Law? The Challenges Ahead, 2023, available on SSRN at https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4537093
5. A. Gascón Marcén, The Budapest Convention and the UN Cybercrime Convention negotiations, in A. Segura Serrano (ed.), Global Cybersecurity and International Law, Routledge, 2024
6. S. Gless - E. Silverman - T. Weigend, If robots cause harm, who is to blame? Self-driving cars and criminal liability, in New Criminal Law Review, Vol. 19, Number 3, 2016, 412 ss. [link SSRN: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=2724592]
Additional references will be provided during the classes.
Assessment methods and Criteria
The exam is oral. The oral exam consists of a discussion on the topics included in the mandatory references. The exam is aimed at ascertaining the preparation and argumentative capacity of the student.
Professor(s)
Reception:
The tutoring will be delivered on appointment to be scheduled by email.