The Council of Ministers approved on 25 May 2012, legislative decrees transposing Directives 2009/136/EC and 2009/140/EC into national law, that will introduce mandatory notifications for breaches of personal data in the telecommunications sector.

Under the new law, communications service providers will be obliged to inform the authorities and their customers about security breaches affecting their personal data. 'This aims to increase incentives for better protection of personal data by providers of communication networks and services', read a press release by the Italian Government.

The changes will also require that names, email addresses and bank details of clients, suppliers of telecommunications services and internet access, and, in particular, the data on each call and network session be kept safe from unwanted use, accidental or fraudulent.

Additionally, the new law implements the cookie consent rules contained within Directive 2009/136/EC. The Italian Council of Ministers stated that internet users will be better informed about the existence of such cookies and about what happens to their personal data, so they may exercise control over them more easily.

EU: BCR Webinar: Top 5 takeaways

EU: Soundbites from the EU Parliament seminar on the data reform

EU: WP29 clarifies DPAs' expectations of BSPRs

EU: 'Three possible dates' put forward for the LIBE vote on data proposals

USA: Data brokers urged to review privacy practices after FTC warnings

USA: NLRB: blanket confidentiality rule during employee investigations 'invalid'

China: MIIT draft rules expand telecoms & IISP obligations

Singapore: Personal Data Protection Commission to launch May 2013

Australia, OAIC: Data security 'critical' to meet upcoming requirements

USA: Commerce Committee criticises industry failure to adopt DNT

USA: SEC and CFTC issue Red Flag Rules for financial institutions and creditors