Application of the guidelines of the Agency for Digital Italy guidelines and CSA Star self-assessment: A Docustar case study

Application of the guidelines of the Agency for Digital Italy guidelines and CSA Star self-assessment: A Docustar case study Pierluigi Calabrese Stella All in One Srl, Italy Paola Lunalbi Stella all in one Srl, Italy Vincenzo Ribaudo iInformatica Srl, Italy Saverio Crisafulli iInformatica Srl, Italy Antonio Ruoto iInformatica Srl, Italy Vito Santarcangelo iInformatica Srl, Italy Diego Sinitò iInformatica Srl, Italy Carlo Bonelli Keylogic Srls, Italy Giuseppe Stella Stella All in One Srl, Italy This is a section of ASA 2022 Data-Driven Decision Making(DOI: 10.36253/979-12-215-0106-3) by Enrico di Bella, Luigi Fabbris, Corrado Lagazio Firenze University Press Firenze 2023 https://doi.org/10.36253/979-12-215-0106-3.45

Available for academic research purposes

Open Access

Content licence CC BY 4.0

Metadata licence CC0 1.0

This is original content, published for academic research purposes

Digital edition XML powered by Booksflow

The paper shows the new particularly rigorous regulatory context introduced by the entry into force of the AGID guidelines with reference to the application of the Italian digital administration code on the formation, management and storage of electronic documents. In this regard, a concrete case study of the innovative software Docustar is presented, developed by the innovative SME Stella All in One, an ISO 27001:2013 certified company. The cloud software implemented in this way represents a real revolution both in terms of digital rights management of documents, but also in terms of AGID compliance. In addition, being a cloud software intended for use by the public administration, the system perfectly meets the requirements of the CSA Star Self-Assessment, another focal point together with the ISO 27001 standard to ensure the security of information on application systems.

ISO 27001 information security system AGID compliance CSA star digital public administration

It is available online at https://doi.org/10.36253/979-12-215-0106-3.45

References Calder, A (2009). Information Security based on ISO 27001/ISO 27002. Van Haren. Lisi, A. (2009). The Digital Administration Code in Italy: Light and Shade. Curentul Juridic, The Juridical Current, Le Courant Juridique 1, pp. 57-63. Phattanateeradej, C., Twittie S. (2016). Storage and search tool for cloud provider security information in CSA STAR. 13th International Joint Conference on Computer Science and Software Engineering (JCSSE). IEEE. Ziming, L. (2008). Paper to digital: Documents in the information age. ABC-CLIO. Voigt, P., Von dem Bussche, A. (2017). The EU General Data Protection Regulation (GDPR): A Practical Guide. Springer International. Diamantopoulou, V., Tsohou, A., Karyda, M. (2019). General Data Protection Regulation and ISO/IEC 27001: 2013: Synergies of activities towards organisations’ compliance. International Conference on Trust and Privacy in Digital Business. Springer, Cham, pp