The course aims to provide an introductory yet solid overview of the European and national regulatory framework on personal data protection, artificial intelligence, and digital law. By the end of the course, students will be able to:
Nessuno.
Most of the course will be delivered through lectures featuring concrete examples and case discussions.
Active student participation is expected through short exercises, guided questions, and small group work.
Materials used during the lessons will be uploaded to the e-learning platform and will form an integral part of the exam syllabus.
Attendance is strongly recommended to ensure a thorough understanding of the content and effective engagement in the learning activities.
A single exam is scheduled, covering both the first module (No. 97R004-1 – Prof. Cerea) and the second module (No. 97R004-2 – Prof. Zanichelli).
The final grade, expressed in thirtieths, will be the average of the marks obtained in each module. The exam is considered passed if the student demonstrates sufficient knowledge of the topics from both modules.
The exam will be conducted orally, following the order of registration for the exam session.
The oral exam will normally include three questions for each of the two modules (the number of questions may vary depending on how the interview proceeds).
Each individual answer will be assessed based on the following criteria:
With regard specifically to the first module, attending students may be offered the option, at the end of the course, to submit a short paper on one of the topics or practical cases covered. This paper will contribute to the final grade by averaging with the result of the oral exam.
I. Legal Sources for the Regulation of the Digital Society
The role of the European Union in digital governance – Italian and European legal sources for the digital domain – Introduction to the digital risk society – Regulating digital risk: approaches and instruments.
II. Data Protection, Processing, and Security
The General Data Protection Regulation (GDPR) – Italian implementing legislation, the role of supervisory authorities, and data transfers to third countries – The European legal framework on digital innovation: DSA, DMA, Data Act, Data Governance Act, and AI Act – Regulation of security measures and risk management: NIS, NIS2, Cybersecurity Act, and the National Cybersecurity Perimeter.
III. Legal Foundations of Artificial Intelligence (AI)
Algorithms, datafication, and the technical functioning of AI – Classification of AI systems under the AI Act: risk-based approach – Requirements for AI under EU law: explainability, reliability, human oversight – Legal liability in the design, development, and deployment of AI – Ethical and legal issues: bias, opacity, algorithmic discrimination (overview) – The impact of AI on fundamental rights and society.
