IES - INTERNATIONAL EXHIBITION SERVICES
IES - INTERNATIONAL EXHIBITION SERVICES

ITALIAN PERSONAL DATA PROTECTION CODE

IES cares about the privacy of all customers and suppliers: please read our updated PRIVACY POLICY

 

Legislative Decree no. 196 of 30 June 2003
(updated by 
REGOLAMENTO 2016/679/UE)



PART 1 — GENERAL PROVISIONS
TITLE I — GENERAL PRINCIPLES

Section 1 (Right to the Protection of Personal Data)
Section 2 (Purposes)
Section 3 (Data Minimisation Principle)
Section 4 (Definitions)
Section 5 (Subject-Matter and Scope of Application)
Section 6 (Regulations Applying to Processing Operations)TITLE II — DATA SUBJECT’S RIGHTS 
Section 7 (Right to Access Personal Data and Other Rights)
Section 8 (Exercise of Rights)
Section 9 (Mechanisms to Exercise Rights)
Section 10 (Response to Data Subjects)TITLE III — GENERAL DATA PROCESSING RULES
CHAPTER I — RULES APPLYING TO ALL PROCESSING OPERATIONS
Section 11 (Processing Arrangements and Data Quality)
Section 12 (Codes of Conduct and Professional Practice)
Section 13 (Information to Data Subjects)
Section 14 (Profiling of Data Subjects and Their Personality)
Section 15 (Damage Caused on Account of the Processing)
Section 16 (Termination of Processing Operations)
Section 17 (Processing Operations Carrying Specific Risks)
CHAPTER II — ADDITIONAL RULES APPLYING TO PUBLIC BODIES
Section 18 (Principles Applying to All Processing Operations Performed by Public Bodies
Section 19 (Principles Applying to the Processing of Data Other Than Sensitive and Judicial Data)
Section 20 (Principles Applying to the Processing of Sensitive Data) 
Section 21 (Principles Applying to the Processing of Judicial Data) 
Section 22 (Principles Applying to the Processing of Sensitive Data as well as to Judicial Data)
CHAPTER III — ADDITIONAL RULES APPLYING TO PRIVATE BODIES AND PROFIT-SEEKING PUBLIC BODIES
Section 23 (Consent)
Section 24 (Cases in Which No Consent Is Required for Processing Data)
Section 25 (Bans on Communication and Dissemination)
Section 26 (Safeguards Applying to Sensitive Data)
Section 27 (Safeguards Applying to Judicial Data)TITLE IV — ENTITIES PERFORMING PROCESSING OPERATIONS
Section 28 (Data Controller)
Section 29 (Data Processor)
Section 30 (Persons in Charge of the Processing)TITLE V — DATA AND SYSTEM SECURITY
CHAPTER I — SECURITY MEASURES
Section 31 (Security Requirements)
Section 32 (Specific Categories of Data Controller)
CHAPTER II — MINIMUM SECURITY MEASURES
Section 33 (Minimum Security Measures)
Section 34 (Processing by Electronic Means)
Section 35 (Processing without Electronic Means)
Section 36 (Upgrading)TITLE VI — PERFORMANCE OF SPECIFIC TASKS
Section 37 (Notification of the Processing)
Section 38 (Notification Mechanisms)
Section 39 (Communication Obligations)
Section 40 (General Authorisations)
Section 41 (Authorisation Requests)TITLE VII — TRANSBORDER DATA FLOWS
Section 42 (Data Flows in the EU)
Section 43 (Permitted Data Transfers to Third Countries)
Section 44 (Other Permitted Data Transfers)
Section 45 (Prohibited Data Transfers)
PART II — PROVISIONS APPLYING TO SPECIFIC SECTORS
TITLE I — PROCESSING OPERATIONS IN THE JUDICIAL SECTOR
CHAPTER I — IN GENERAL
Section 46 (Data Controllers)
Section 47 (Processing Operations for Purposes of Justice)
Section 48 (Data Banks of Judicial Offices)
Section 49 (Implementing Provisions)
CHAPTER II — CHILDREN
Section 50 (Reports or Images Concerning Underage Persons)
CHAPTER III — LEGAL INFORMATION SERVICES
Section 51 (General Principles)
Section 52 (Information Identifying Data Subjects)TITLE II — PROCESSING OPERATIONS BY THE POLICE
CHAPTER I — IN GENERAL
Section 53 (Scope of Application and Data Controllers)
Section 54 (Processing Mechanisms and Data Flows)
Section 55 (Specific Technology)
Section 56 (Safeguards for Data Subjects)
Section 57 (Implementing Provisions)TITLE III — STATE DEFENCE AND SECURITY
CHAPTER I — IN GENERAL
Section 58 (Applicable Provisions)TITLE IV — PROCESSING OPERATIONS IN THE PUBLIC SECTOR
CHAPTER I — ACCESS TO ADMINISTRATIVE RECORDS
Section 59 (Access to Administrative Records)
Section 60 (Data Disclosing Health and Sex Life)
CHAPTER II — PUBLIC REGISTERS AND PROFESSIONAL REGISTERS
Section 61 (Use of Public Information)
CHAPTER III — REGISTERS OF BIRTHS, DEATHS AND MARRIAGES, CENSUS REGISTERS AND ELECTORAL LISTS
Section 62 (Sensitive and Judicial Data)
Section 63 (Interrogation of Records)
CHAPTER IV — PURPOSES IN THE SUBSTANTIAL PUBLIC INTEREST
Section 64 (Citizenship, Immigration and Alien Status)
Section 65 (Political Rights and Public Disclosure of the Activities of Certain Bodies)
Section 66 (Taxation and Customs Matters)
Section 67 (Auditing and Controls)
Section 68 (Grants and Certifications)
Section 69 (Honours, Rewards and Incorporation)
Section 70 (Voluntary Organisations and Conscientious Objection)
Section 71 (Imposition of Sanctions and Precautionary Measures)
Section 72 (Relationships with Religious Denominations)
Section 73 (Other Purposes Related to Administrative and Social Matters)
CHAPTER V — SPECIFIC PERMITS
Section 74 (Car Permits and Access to Town Centres)TITLE V — PROCESSING OF PERSONAL DATA IN THE HEALTH CARE SECTOR
CHAPTER I — IN GENERAL
Section 75 (Scope of Application)
Section 76 (Health Care Professionals and Public Health Care Bodies)
CHAPTER II — SIMPLIFIED ARRANGEMENTS CONCERNING INFORMATION AND CONSENT
Section 77 (Simplification)
Section 78 (Information Provided by General Practitioners and Paediatricians)
Section 79 (Information Provided by Health Care Bodies)
Section 80 (Information Provided by Other Public Bodies)
Section 81 (Providing One’s Consent)
Section 82 (Emergency and Protection of Health and Bodily Integrity)
Section 83 (Other Provisions to Ensure Respect for Data Subjects’ Rights)
Section 84 (Data Communication to Data Subjects)
CHAPTER III — PURPOSES IN THE SUBSTANTIAL PUBLIC INTEREST
Section 85 (Tasks of the National Health Service)
Section 86 (Other Purposes in the Substantial Public Interest)
CHAPTER IV — MEDICAL PRESCRIPTIONS
Section 87 (Drugs Paid for by the National Health Service) 
Section 88 (Drugs Not Paid for by the National Health Service)
Section 89 (Special Cases)
CHAPTER V — GENETIC DATA
Section 90 (Processing of Genetic Data and Bone Marrow Donors)
CHAPTER VI — MISCELLANEOUS PROVISIONS
Section 91 (Data Processed by Means of Cards)
Section 92 (Clinical Records)
Section 93 (Certificate of Attendance at Birth)
Section 94 (Data Banks, Registers and Filing Systems in the Health Care Sector)TITLE VI — EDUCATION
CHAPTER I — IN GENERAL
Section 95 (Sensitive and Judicial Data)
Section 96 (Processing of Data Concerning Students)TITLE VII — PROCESSING FOR HISTORICAL, STATISTICAL OR SCIENTIFIC PURPOSES
CHAPTER I — IN GENERAL
Section 97 (Scope of Application)
Section 98 (Purposes in the Substantial Public Interest)
Section 99 (Compatibility between Purposes and Duration of Processing)
Section 100 (Data Concerning Studies and Researches)CHAPTER II — PROCESSING FOR HISTORICAL PURPOSES
Section 101 (Processing Arrangements)
Section 102 (Code of Conduct and Professional Practice)
Section 103 (Interrogating Documents Kept in Archives)
CHAPTER III — PROCESSING FOR STATISTICAL OR SCIENTIFIC PURPOSES
Section 104 (Scope of Application and Identification Data for Statistical or Scientific Purposes)
Section 105 (Processing Arrangements)
Section 106 (Codes of Conduct and Professional Practice)
Section 107 (Processing of Sensitive Data)
Section 108 (National Statistical System)
Section 109 (Statistical Data Concerning Birth Events)
Section 110 (Medical, Biomedical and Epidemiological Research)TITLE VIII — OCCUPATIONAL AND SOCIAL SECURITY ISSUES
CHAPTER I — IN GENERAL
Section 111 (Code of Conduct and Professional Practice)
Section 112 (Purposes in the Substantial Public Interest)
CHAPTER II — JOB ADS AND EMPLOYEE DATA
Section 113 (Data Collection and Relevance)
CHAPTER III — BAN ON DISTANCE MONITORING AND TELEWORK
Section 114 (Distance Monitoring)
Section 115 (Telework and Home-Based Work)
CHAPTER IV — ASSISTANCE BOARDS AND SOCIAL WORK
Section 116 (Availability of Data under the Terms Agreed upon with Data Subjects)TITLE IX — BANKING, FINANCIAL AND INSURANCE SYSTEMS
CHAPTER I — INFORMATION SYSTEMS
Section 117 (Reliability and Timeliness in Payment-Related Matters)
Section 118 (Commercial Information)
Section 119 (Data Concerning Payment of Debts)
Section 120 (Car Accidents)TITLE X — ELECTRONIC COMMUNICATIONS
CHAPTER I — ELECTRONIC COMMUNICATION SERVICES
Section 121 (Services Concerned)
Section 122 (Information Collected with Regard to Subscribers or Users)
Section 123 (Traffic Data)
Section 124 (Itemised Billing)
Section 125 (Calling Line Identification)
Section 126 (Location Data)
Section 127 (Nuisance and Emergency Calls)
Section 128 (Automatic Call Forwarding)
Section 129 (Directories of Subscribers)
Section 130 (Unsolicited Communications)
Section 131 (Information Provided to Subscribers and Users)
Section 132 (Traffic Data Retention for Other Purposes)
CHAPTER II — INTERNET AND ELECTRONIC NETWORKS
Section 133 (Code of Conduct and Professional Practice)
CHAPTER III — VIDEO SURVEILLANCE
Section 134 (Code of Conduct and Professional Practice)TITLE XI — SELF-EMPLOYED PROFESSIONALS AND PRIVATE DETECTIVES
CHAPTER I — IN GENERAL
Section135 (Code of Conduct and Professional Practice)TITLE XII — JOURNALISM AND LITERARY AND ARTISTIC EXPRESSION
CHAPTER I — IN GENERAL
Section 136 (Journalistic Purposes and Other Intellectual Works)
Section 137 (Applicable Provisions)
Section 138 (Professional Secrecy)
CHAPTER II — CODE OF PRACTICE
Section 139 (Code of Practice Applying to Journalistic Activities)TITLE XIII — DIRECT MARKETING
CHAPTER I — IN GENERAL
Section 140 (Code of Conduct and Professional Practice)
PART III — REMEDIES AND SANCTIONS
TITLE I — ADMINISTRATIVE AND JUDICIAL REMEDIES
CHAPTER I — REMEDIES AVAILABLE TO DATA SUBJECTS BEFORE THE GARANTE
I — GENERAL PRINCIPLES

Section 141 (Available Remedies)
II — ADMINISTRATIVE REMEDIES
Section 142 (Lodging a Claim)
Section 143 (Handling a Claim)
Section 144 (Reports)
III — NON-JUDICIAL REMEDIES
Section 145 (Complaints)
Section 146 (Prior Request to Data Controller or Processor)
Section 147 (Lodging a Complaint)
Section 148 (Inadmissible Complaints)
Section 149 (Handling a Complaint)
Section 150 (Measures Taken Following a Complaint)
Section 151 (Challenging)
CHAPTER II — JUDICIAL REMEDIES
Section 152 (Judicial Authorities)TITLE II — THE SUPERVISORY AUTHORITY
CHAPTER I — THE GARANTE PER LA PROTEZIONE DEI DATI PERSONALI
Section 153 (The Garante)
Section 154 (Tasks)
CHAPTER II - THE GARANTE'S OFFICE
Section 155 (Applicable Principles)
Section 156 (Permanent and Other Staff)
CHAPTER III - INQUIRIES AND CONTROLS
Section 157 (Request for Information and Production of Documents)
Section 158 (Inquiries)
Section 159 (Arrangements)
Section 160 (Specific Inquiries)TITLE III - SANCTIONS
CHAPTER I - BREACH OF ADMINISTRATIVE RULES
Section 161 (Providing No or Inadequate Information to Data Subjects)
Section 162 (Other Types of Non-Compliance)
Section 163 (Submitting No or an Incomplete Notification)
Section 164 (Failure to Provide Information or Produce Documents to the Garante)
Section 165 (Publication of Provisions by the Garante)
Section 166 (Implementing Procedure)
CHAPTER II - CRIMINAL OFFENCES
Section 167 (Unlawful Data Processing)
Section 168 (Untrue Declarations and Notifications Submitted to the Garante)
Section 169 (Security Measures)
Section 170 (Failure to Comply with Provisions Issued by the Garante)
Section 171 (Other Offences)
Section 172 (Additional Punishments)TITLE IV - AMENDMENTS, REPEALS, TRANSITIONAL AND FINAL PROVISIONS
CHAPTER I - AMENDMENTS
Section 173 (Convention Implementing the Schengen Agreement)
Section 174 (Service of Process and Judicial Sales)
Section 175 (Police)
Section 176 (Public Bodies)
Section 177 (Census Registers, Registers of Births, Deaths and Marriages, and Electoral Lists)
Section 178 (Provisions Concerning the Health Care Sector)
Section 179 (Other Amendments)
CHAPTER II - TRANSITIONAL PROVISIONS
Section 180 (Security Measures)
Section 181 (Other Transitional Provisions)
Section 182 (Office of the Garante)
CHAPTER III - REPEALS
Section 183 (Repealed Provisions)
CHAPTER IV - FINAL PROVISIONS
Section 184 (Transposition of European Directives)
Section 185 (Annexed Codes of Conducts and Professional Practice) 
Section 186 (Entry into Force)
ANNEXES

CODES OF CONDUCT (ANNEX A)
A.1 — Processing of personal data in the exercise the exercise of journalistic activities
A.2 — Processing of personal data for historical purposes
A.3 — Processing of personal data for statistical purposes within the framework of the SI.STA.N. [National Statistical System]
ANNEX B— TECHNICAL SPECIFICATIONS CONCERNING MINIMUM SECURITY MEASURES
IES S.r.l. - INTERNATIONAL EXHIBITION SERVICES - Via Anton Giulio Bragaglia 33, 00123 - Rome, Italy - Tel. +39 06 30883030 - Fax. +39 06 30883040 - Email: ies@ies.co.it
P.IVA, CF, REG. IMPR.: IT04428121000 - REA N. 764195 - CAPITALE SOCIALE € 95.000,00 INT. VERS.
COOKIE POLICY