- The document discusses the University of Camerino's unified approach to satisfying the requirements of the GDPR, NIS Directive, and ISO 27001 through an integrated risk management and information security system.
- Key aspects included expanding the university's information security management system (ISMS) to fully integrate the Minimum ICT Security Measures for Public Administration and modifying technical procedures, documents, and the scope of assessment.
- The approach represents the university's first step toward modifying its ISMS to directly integrate GDPR requirements regarding data protection and the security of personal information.