1,720,983 research outputs found
A model driven approach to GDPR compliance
No full textThis paper proposes a model-driven approach based on business process modeling to support compliance with the European General Data Protection Regulation (GDPR, EU 2016/679). The adoption of GDPR by an organisation raises the main question of how to audit the organisation’s adherence. Starting from BPMN, which can allow businesses to better understand their internal business procedures, we propose an approach that helps to identify the most important key point(s) for GDPR compliance
Ethics in psychology: The new topics of online research
No full textIn these few lines will provide for reflection in response to what has emerged in the investigation of Molina and Pasini (2020) with respect to the practices and ethics training in psychological research. In particular, in this context, the reflection concerns the changes that occurred during the pandemic in terms of psychological ethics, with the advent and increase of online research as well as of the remote clinic. It is important to reflect and train future professionals on these issues and on the ethical aspects involved
Cyber Risk Analysis for IoT Infrastructure in Smart City Context
No full textThe spread of IoT sensor and actuator networks in the context of Smart Cities requires an ever-increasing attention to IT security and therefore also to adopt methodologies for analyzing cyber risk. IoT networks have an increasingly important function in Smart Cities, becoming active agents whose tampering could compromise the functioning of entire systems. IoT infrastructure could be considered, as a Critical Infrastructure. In the contest of industrial process and automation, and in particular in the so- called Industry 4.0, the now intensive application of control systems in interconnected networks has led to an increase in unexpected threats to information security for supervisory control and data acquisition (SCADA) and control systems distributed (DCS). With due attention, interesting parallels can be found between remote control systems typical of the industrial environment and IoT sensor networks in Smart Cities than classical IT risk assessment methods couldn’t be enough. In this paper we want to try to decline in the context of Smart Cities a methodology named CRiSP (Cyber Risk Analysis in Industrial Process System Environment). created for the assessment of cyber risk in industrial contexts that have strongly connected plants. CRiSP defines an approach to analyze the risk related to the manipulation of a single element of the plant and to analyze the consequence to entire plant and to a restricted portion
A Structured Approach to GDPR Compliance
No full textThe European General Data Protection Regulation (GDPR, EU 2016/679), adopted by the European Parliament has profoundly changed the legislative approach to the protection of personal data by the European Union. The GDPR provisions require organizations to make deep changes. Organizations have to shift from an approach based on the adoption of minimum-security measures, provided by the EU Directive of 1994, to a proactive approach based on accountability. Organizations that manage personal data of EU citizens have to adopt systems of verification and continuous improvement and adopt principles such as privacy by design and privacy by default. The rule of “privacy by design” calls for privacy to be taken into account throughout the whole engineering process. A key point is the methods for checking compliance with GDPR. This paper proposes a structured approach based on business process modelling, to support compliance with the GDPR. We have identified an approach that has to identify the most important key points for GDPR compliance
Supporting Public Administration’s Digital Transformation using No-code platform
No full textLa Trasformazione Digitale è un passaggio ormai obbligato per la PA italiana, sia per questioni legislative sia perché ormai, finalmente, si è compreso che è l’unico modo per aumentare l’efficienza della PA ed aumentare la competitività dell’intero paese. Tuttavia, l’adozione di nuove piattaforme è frenata sia da complessità burocratiche sia dalla carenza di figure specializzate. Le piattaforme di No-Code possono essere utili in questo contesto poiché consentono, al personale interno, di creare nuove applicazioni aziendali, per l’utilizzo da parte di altri, senza scrivere codice. Attualmente l’adozione di queste piattaforme risulta impossibile da parte delle PA italiane poiché per queste è obbligatorio integrare, in qualsiasi applicazione, infrastrutture nazionali come SPID e PagoPA che rispondo, peraltro, a normative e standard di carattere europeo. Integrazioni che non sono previste in nessuna piattaforma di No- Code. Paradossalmente la definizione di standard Europei per la gestione delle identità digitali (SPID) e per la gestione dei pagamenti (PagoPA), risulta essere un limite nel processo di trasformazione digitale. Obiettivo di questo lavoro, ancora in corso, è dimostrare è possibile supportare la trasformazione digitale adottando piattaforme di No-Code all’interno della PA integrandole con SPID e PagoPA
Business Process awareness to support GDPR compliance
No full textThis paper proposes e model driven approach, based on business process awareness to support the compliance to GDPR. The European General Data Protection Regulation (GDPR (EU) 2016/679) regard the processing of personal data and on the free movement of such data. The main purpose is to safeguard the data subject’s human dignity and fundamental rights. To achieve this goal is necessary to identify the motivation of data management, define who have access to data, and determine with high precision how, when and how many times the organization store manage the data. GDPR requires the self-assessment of digital risks on the basis of the impact assessment analysis. The adoption of GDPR by an organization raises this main question: how do we audit an organization’s adherence? Starting form BPMN that “provide businesses with the capability of understanding their internal business procedures” we propose an approach that help to identify the most important keypoint(s) useful for GDPR compliance. To analyse the potential applicability of our thesis we describe a “Vacation Request” scenario where we applied the proposed approach
The Use of New Technologies for Improving Reading Comprehension
Full text linkSince the introduction of writing systems, reading comprehension has always been a foundation for achievement in several areas within the educational system, as well as a prerequisite for successful participation in most areas of adult life. The increased availability of technologies and web-based resources can be a really valid support, both in the educational and clinical field, to devise training activities that can also be carried out remotely. There are studies in current literature that has examined the efficacy of internet-based programs for reading comprehension for children with reading comprehension difficulties but almost none considered distance rehabilitation programs. The present paper reports data concerning a distance program Cloze, developed in Italy, for improving language and reading comprehension. Twenty-eight children from 3rd to 6th grade with comprehension difficulties were involved. These children completed the distance program for 15–20 min for at least three times a week for about 4 months. The program was presented separately to each child, with a degree of difficulty adapted to his/her characteristics. Text reading comprehension (assessed distinguishing between narrative and informative texts) increased after intervention. These findings have clinical and educational implications as they suggest that it is possible to promote reading comprehension with a distance individualized program, avoiding the need for the child displacements, necessary for reaching a rehabilitation center
Magnitude Representation and Working Memory Updating in Children With Arithmetic and Reading Comprehension Disabilities
No full textIt has been argued that children with learning disabilities (LD) encounter severe problems in working memory (WM) tasks, especially when they need to update information stored in their WM. It is not clear, however, to what extent this is due to a generally poor updating ability or to a difficulty specific to the domain to be processed. To examine this issue, two groups of children with arithmetic or reading comprehension LD and a group of typically developing children (9 to 10 years old) were assessed using two updating tasks requiring to select the smallest numbers or objects presented. The results showed that children with an arithmetic disability failed in a number updating task, but not in the object updating task. The opposite was true for the group with poor reading comprehension, whose performance was worse in the object than in the number updating task. It may be concluded that the problem of WM updating in children with LD is also due to a poor representation of the material to be updated. In addition, our findings suggest that the mental representation of the size of objects relates to the semantic representation of the objects' properties and differs from the quantitative representation of numbers
A preliminary study to investigate the health status about the role and competencies of the Digital Transformation Manager in the Italian Public Administrations
No full text: The digitalization of public administration represents a crucial factor for the
socio-economic growth of a country. Whereas infrastructural and process drivers are
relevant to support the transformation process, human resource capabilities and the
presence of purposeful leadership and managerial capabilities are crucial to fully
exploit the potential offered by digital technologies. In such perspective, this research
focuses on the Italian system as a case study, with the objective to identify strengths
and weaknesses related to the management and human capital drivers of digital
transformation. In particular, we focus on the role of the Responsible for Digital
Transition (RTD), a professional role introduced with the Digital Administration Code
(DAC) to enable public institutions to effectively undertake their digital
transformation journey. We use open data and public repositories to analyse an
extensive sample of 954 RTDs, and we compare the curricula of appointed
professionals with the legislative requirements and the specific functions defined by
the CAD. We also provide a literature-based and practitioner-oriented framework of
competence areas to facilitate our benchmark. The study shows that over 20% of
public entities have not yet appointed a RTD and in most cases there is a significant
discrepancy between the competencies possessed and those required by the CAD. This
represents a critical issue, which highlights the need of targeted interventions to
address the gaps in both the appointments and the training procedures and methods.
The study offers a critical evaluation of the current state of digital transition in the
Italian system, highlighting the main challenges and proposing possible solutions. We
also contribute to the academic discussion with a competence definition framework
and insights on the centrality of human capital to drive digital transformatio
- …
