Data Governance: Ethical and Legal Issues

A.Y. 2025/2026
6
Max ECTS
40
Overall hours
SSD
IUS/20
Language
English
Learning objectives
Undefined
Expected learning outcomes
Undefined
Single course

This course can be attended as a single course.

Course syllabus and organization

Single session

Responsible
Lesson period
First trimester
Course syllabus
1. Introduction
2. The fundamental right to personal data protection
4. Data protection definitions
5. General Principles of European Data Protection Law
6. The Legal Conditions relating to processing of personal data;
7. The accountability of the controller and the duties of the processor
8. Cybersecurity and data protection
9. Risk based approach and the setup of a cybersecurity plan
10. Security measures and data protection
11. Pseudonymization and encryption
12. Data breaches and remedies to security incidents
13. The Data Protection Officer (part I)
14. The Data Protection Officer (part II)
15. Cybersecurity regulation in EU
16. Key concepts of criminal law and their application in the cybercrime field
17. Cybercrime regulation: Budapest Convention and UN convention
18. Liability for cybercrimes: individuals, corporations, states
19. Challenges of AI in cybersecurity
20. European regulation on AI systems: the AI Act
21. AI systems and tort liability
22. AI systems and criminal liability
23. Digital investigations and AI-generated evidence
Prerequisites for admission
No prerequisites are required.
Teaching methods
Lectures and paper and case studies based discussions.
Teaching Resources
1. Handbook on European data protection law - 2018 edition, available at https://www.coe.int/en/web/data-protection

2. G. Fuster - L. Jasmontaite, Cybersecurity Regulation in the European Union: The Digital, the Critical and Fundamental Rights, 2020, available in Open Access at https://link.springer.com/chapter/10.1007/978-3-030-29053-5_5

3. Website on EU Digital Strategy with a focus on cybersecurity regulation: https://digital-strategy.ec.europa.eu/en/policies/cybersecurity-policies

4. P.G. Chiara, Towards a Right to Cybersecurity in EU Law? The Challenges Ahead, 2023, available on SSRN at https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4537093

5. A. Gascón Marcén, The Budapest Convention and the UN Cybercrime Convention negotiations, in A. Segura Serrano (ed.), Global Cybersecurity and International Law, Routledge, 2024

6. S. Gless - E. Silverman - T. Weigend, If robots cause harm, who is to blame? Self-driving cars and criminal liability, in New Criminal Law Review, Vol. 19, Number 3, 2016, 412 ss. [link SSRN: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=2724592]

Additional references will be provided during the classes.
Assessment methods and Criteria
The exam is oral. The oral exam consists of a discussion on the topics included in the mandatory references. The exam is aimed at ascertaining the preparation and argumentative capacity of the student.
IUS/20 - PHILOSOPHY OF LAW - University credits: 6
Lessons: 40 hours
Professor: Perri Pierluigi
Professor(s)
Reception:
The tutoring will be delivered on appointment to be scheduled by email.