IT Security

The increasingly widespread use of technological tools and the consequent increase in services offered through the network inevitably requires a strengthening of procedures aimed at protecting personal data.

And in full application of the EU Regulation 2016/679, even in this case the Data Controller must implement adequate technical and organizational measures to guarantee, and be able to demonstrate, that the treatment is carried out in accordance with the provisions of the Regulation, taking due account of the nature, scope, context and purpose of the treatment, as well as the risks with different probabilities and seriousness for the rights and liberties of physical persons.

The Data Controller, therefore, must adopt all actions necessary to combat IT risks, analytically evaluating the security systems and technologies, in full compliance with the principle of accountability.