Data governance in digitalisation processes: security and data management aspects.

Within the framework of the Paradigma conference dedicated to the digitalisation of corporate books, Attorney Alessandro Del Ninno, Partner at FIVERS Law and Tax Firm, delivered a presentation focused on data governance, personal data protection and cybersecurity in the processes of dematerialisation and digital preservation of corporate records.

The contribution formed part of the broader programme of the conference, which aimed to provide a practical and legal guide to the implementation of the digitalisation of corporate books, and specifically addressed the implications arising from the processing of personal data – including potentially sensitive data – contained in corporate books and documents. Attorney Del Ninno analysed the privacy and cybersecurity risks associated with the digital transformation of such records, highlighting that digitalisation is not merely a technological shift, but entails a profound rethinking of data governance models.

The presentation examined the technical and organisational security measures required to ensure the integrity, confidentiality and availability of information throughout the lifecycle of digital corporate books, with particular attention to access controls, encryption, audit mechanisms and long-term digital preservation solutions. It also addressed the application of the principles of privacy by design and privacy by default in the design of digitalisation and preservation services, as well as the importance of conducting appropriate prior risk assessments.

A specific focus was devoted to the Data Protection Impact Assessment (DPIA) as a key accountability tool in the digitalisation of corporate books, given the nature of the data processed and the legal and evidentiary relevance of the documents involved. The analysis clarified when and how a DPIA should be integrated into dematerialisation projects, also in coordination with the other corporate functions involved.

Attorney Del Ninno’s presentation contributed to the strongly operational approach of the conference, offering participants an advanced legal perspective on the data protection and cybersecurity implications of the digitalisation of corporate books and providing concrete guidance on how to structure compliant, secure and sustainable processes over time, in line with civil law, digital regulation and personal data protection requirements.