The Council of Ministers approved on 25 May 2012, legislative decrees transposing Directives 2009/136/EC and 2009/140/EC into national law, that will introduce mandatory notifications for breaches of personal data in the telecommunications sector.
Under the new law, communications service providers will be obliged to inform the authorities and their customers about security breaches affecting their personal data. 'This aims to increase incentives for better protection of personal data by providers of communication networks and services', read a press release by the Italian Government.
© 2013 Cecile Park Publishing Ltd. All rights reserved
The changes will also require that names, email addresses and bank details of clients, suppliers of telecommunications services and internet access, and, in particular, the data on each call and network session be kept safe from unwanted use, accidental or fraudulent.
Additionally, the new law implements the cookie consent rules contained within Directive 2009/136/EC. The Italian Council of Ministers stated that internet users will be better informed about the existence of such cookies and about what happens to their personal data, so they may exercise control over them more easily.