Docs Italia beta

Public documents, made digital.

This document was translated by a machine.

We want to make our country more efficient. We believe humans and machines should complement each other. Artificial Intelligence is the technology that will enable such symbiosis. This document has been translated using a mix of state-of-the-art machine translation and human-driven AI. The raw machine translation output has been edited by an automated system trained on millions of professionally corrected sentences. Finally, a human went through the document to make sure that no information had been lost.

This means leaving behind some stylistic improvements and potential errors. However, this AI-augmented approach to translation allowed us to prepare this English version at a fraction of the cost and time of the legacy translation process (this translation was made in a few days including the human review; we didn’t publish it right away because we had to convert it to reStructuredText in order to share it on GitHub and we had a ton of things to do before that!).

If you want to contribute with feedback and changes to the Three Year Plan for ICT in the Public Administration, visit the Github repository.

We remind you that only the Italian version approved every year by the Italian Government has legal value.

12. Indications for the Public administrations

The Plan provides for a number of PA actions, some of which have already been initiated. To speed up the implementation path of each administration, refer to Annex 2 for an overview of conventions and other active procurement tools. It is underlined that in addition to the traditional procurement tools, the PAs can use forms of collaboration to accelerate implementation times and reduce costs and risks of failure. Amongst the forms currently in use and which will have to be adopted by the administrations, which are not capable of achieving the objectives by themselves within the times provided, are:

  • collaboration agreements for the management of application services: participation in collaboration agreements between administrations that have decided to share in the implementation of common platforms; in this case the already existing cooperation agreements between some regions reoccur;
  • “ancillary” solutions: use of “ancillary” applicative solutions through agreements between the PAs that have already developed strategic and non-operational initiatives; such agreements, which may be different, depending on the project, must have characteristics such as to guarantee their sustainability;
  • use of “in reuse” solutions, as an alternative to “ancillary” ones, in cases where the suitability has been evaluated;
  • use of infrastructure services made available by other administrations.

Below is a summary of all actions that involve the Public Administrations described in detail in the previous chapters.

12.2. Connectivity Tips

Expenditure sustained by administrations for the charges for connectivity services does not fall within the objective of containing expenditure for the three-year period 2016-2018, pursuant to Article 1 paragraph 515 of the 2016 Stability Law.

Below are the actions planned for the three-year period 2017-2019.

From 2017

The Public Administrations will adjust their connection capacity to ensure the full deployment of strategic services and platforms, by adopting alternately:

  • connectivity solutions based on the accession to the SPC Framework Agreements, except where the bandwidth requirements and the transmission characteristics necessary are not potentially satisfying in these contractual areas;
  • the services made available in the territory of reference by the Region or other local public entity which has already established territorial connection structures in compliance with the requirements of AgID and interconnected with the SPC network (principle of subsidiarity)*.*

In any case, in the choice of connectivity services, PAs should prioritise supplies where the transport service is based on dual-stack (IPv4 and IPv6).

From 2018 The administrations define and implement the Adaptation Plan to the guidelines issued by AgID for the Wi-Fi systems that facilitate access to the Internet network from public offices and public places.

12.3. Information on Public Administration Data and DAF

The PAs are required to adapt databases and registers that already operate according to the rules set out in section 4.1.

The PAs will need to use databases of national interest in conjunction with AgID in accordance with the programming set out in the specific implementation plans by the PA holding the individual national database. Failure to comply with these plans must be notified to AgID as it differs from the provisions of this Plan and represents an expenditure inconsistent with the principles of saving set out in Article 1 paragraph 515 of the 2016 Stability Law.

Below are the actions planned for the three-year period 2017-2019.

2017

The public administrations shall commence populating and keep their data updated on IPA as documented on the site www.indicepa.gov.it.

The public administrations will use IPA and INI-PEC [92] in managing their own processes.

From April, the administrations must feed the National Territorial Data Directory (RNDT) according to the rules defined by AgID.

A first set of administrations, identified by AgID from administrations already using PagoPA, SPID and SIOPE systems, commences the activity of documenting its services in the **Services Catalogue** [93].

The public administrations will ensure, in accordance with the guidelines for the enhancement of public information assets, the correct population of the *National Data Catalogue*. The PAs will have to provide infrastructures for the management and publication of data provided by the aforementioned guidelines or, failing this, adopt the default platform provided by AgID and the Digital Team.

From July, PAs holding national databases will update the AgID data sheet on the National Data Catalogue, which explains how to access and the main technical-regulatory references of the specific database.

Public administrations are to participate in the survey on the spread of open data. Administrations that have not yet adopted the *adherence* protocol [94] will need to collaborate with AgID to develop an adherence plan.

By December, administrations will display the metadata for the databases and open data they hold, complying with DCAT-AP_IT specifications [95] and following the semantics expressed in the relative ontology [96].

2018

From June, Public Administrations are to complete the population and keep their data updated on *IPA* [97], as documented on the relative site.

The public administrations will use IPA and INI-PEC [98] in managing their own processes.

From January, PAs holding national databases are to adhere with the Inter-operability Model, assuring data flow to DAF and standardising their data based on the resources contained in the controlled vocabulary.

As of January, all Administrations shall be responsible for uploading information about their services in the *service catalogue* [99].

From December, all municipal registry data (APRs) will migrate to ANPR, in collaboration between Municipalities, the Ministry of the Interior and SOGEI.

From January, following the release of the first version of the register of controlled vocabularies, public administrations are to initiate a process of normalisation of their data based on the resources contained therein

12.4. Indications on enabling Platforms and on strategic projects

Public Administrations are to draft and transmit to AgID the integration plans with intangible infrastructures according to the times and procedures established in the programmes of the individual platforms and strategic projects: SPID, PagoPA, ANPR, electronic invoicing, ComproPA, SIOPE+, NoiPA, etc.

Administrations cannot support costs for the acquisition of autonomous solutions, nor for evolutionary application adjustments, which provide a functionality similar to those offered by enabling platforms and the strategic projects referred to in paragraph 4.2.

It is understood that the costs of integration of their information systems with enabling platforms and strategic projects are eligible, and that these costs are included in the costs for innovation, and are therefore excluded from the savings targets provided for in Article 1 paragraph 515 of the 2016 Stability Law. Public administrations that, on dates set out by the single platform or strategic project, have failed to provide a firm plan for integration, will have to adopt solutions made available by AgID or other administrations (such as platforms implemented by regions) according to subsidiarity logic.

Below are the actions planned for the three-year period 2017-2019.

2017

SPID: The administrations will continue the process of migrating to the Public System of Digital Identity (SPID) by ensuring coverage of all existing digital services, in accordance with AgID’s rules. The administrations will only use the SPID system for newly-activated services.

PagoPA: by December, administrations will need to complete their membership of the PagoPA system for all services that arrange for the payments due by citizens and businesses, according to AgID’s rules. Administrations that have not yet completed their membership to the PagoPA system by June will have to adopt, according to a logic of subsidiarity, already available solutions implemented by other administrations (e.g., regional or other administration platforms), which offer the role of intermediary as provided by the PagoPA system.

ComproPA: by September, MEF, MIT, ANAC, AgID, Consip, the regions and ANCI will complete the rules and start implementing the infrastructures necessary for the operation of the ComproPA system. The administrations involved, being holders of databases of a national interest (such as INPS, INAIL, the Ministry of Justice), will embark on the integration of their systems with the BDOE Economic Operator database feed-in procedures as defined by the decree currently being issued by the MIT.

Electronic invoicing: the Administrations that have not yet completed the integration of Electronic Invoicing with the accounting processes are to carry out the above-mentioned operations and at the same time complete the integration with the accounting systems.

Electronic Identity Card (CIE): from April to October 2017, according to planning approved by the Ministry of the Interior, about 450 Municipalities (that, together with the 199 municipalities already in possession of the CIE distribution service, cover 50% of the population) will activate the system and the distribution of CIEs to its citizens with the support of the IPZS system manager. From October 2017, the distribution of the CIE distribution system is planned for the remaining Municipalities.

Alert and Notification System: the administrations are to initiate experimental use of the national infrastructure for issuing alerts and courtesy notifications to be sent to citizens on the various digital channels.

SIOPE+: from June, the administrations will be able to participate with their treasury banks in the experimentation phase for the SIOPE+ system, which will enable the system to be set up, scheduled for January 2018 for all PAs.

NoiPA: the administrations can join the salary services provided by the NoiPA system through the stipulation of special agreements with the MEF.

Conservation hubs: the administrations will participate in the implementation of the National Administrative Procedures Management System, which establishes the rules for inter-operability of document flows (document, file, protocol) between public administrations. The administrations will participate with the Central State Archives to set up the system for storing perennial digital archives.

2018

SPID: by March, the administrations must complete the implementation of SPID in their on-line services.

PagoPA: the administrations are to extend the use of the PagoPA system to all their services. The administrations that have had an extension of the term for migrating to the PagoPA system due to the complexity of their structures will complete the process.

ComproPA: by October, the administrations will exercise their contractually-awarded functions through the use of remote purchasing and negotiation platforms, conforming to the design defined by the architecture (by 2017) within the ComproPA system.

CIE: by December, the Municipalities will complete the activation of the CIE’s distribution services in accordance with the planning drawn up by the Ministry of Interior.

Alert and notification system: the administrations are to initiate experimental use of the national infrastructure for issuing alerts and courtesy notifications to be sent to citizens on the various digital channels.

SIOPE+: the administrations are responsible for adopting systems to join the SIOPE+ in accordance with the plan defined by the State’s General Accounting, in agreement with the Bank of Italy and AgID and the local PA representations. Administrations can participate by adopting their own systems or those offered by the General State Accounting in a subsidiary logic or alternatively using services provided by other intermediaries.

Electronic Invoicing: the administrations and, in general, all VAT entities are to adopt electronic invoicing by integrating with the Interchange System (SDI) [100] in accordance with current regulations.

NoiPA: the MEF will complete the implementation of the new NoiPA system. The administrations not yet in adherence will be able to communicate their joining the system to programme migration from 2019. The administrations will arrange to adopt the NOIPA system with the programming agreed with the MEF.

Administrative Procedure Management System: the administrations will implement the APIs for participation in the Administrative Procedure Management System.

Conservation hubs: the administrations are to participate with the Central State Archive to develop the Conservation Hubs of the digital archives and to define the interchange rules for inter-operability of conservation systems.

ANPR: by December, the Municipalities are to complete their adoption of ANPR.

From 2019

The Public Administrations are to use the platforms and projects listed above that are now underway.

Alert and Notification System: the administrations will spread the use of national infrastructure for issuing alerts and courtesy notices to be sent to citizens for full use of the digital domicile.

Administrative Procedure Management System: the administrations that have not adhered to the National Administrative Procedure Management System and not equipped with their own system of document management and IT protocol, use according to reuse or ancillary logic, one of the platforms already developed by other administrations.
Conservation hubs: the administrations are to enforce the standard conservation systems for all their IT files and computer files.

The Public Administrations shall participate in the experimentation of new enabling platforms, as defined in the three-year plans following the 2017-2019 Plan.

12.5. Guidelines on the Inter-operability Model

The administrations must move to the new Inter-operability model according to the indications that AgID will provide on managing the transition from current to future applicative cooperation that includes an API-based approach.

Below are the actions planned for the three-year period 2017-2019.

2017 From May, the Public Administrations shall adopt the Guidelines for transition to the new Inter-operability Model for the existing platforms.
2018 From January, for all new applications, the Public Administrations shall adopt the new Inter-operability Model and arrange for the population of the API Catalogue provided by AgID.

12.6. Instructions on Ecosystems

For each ecosystem, the AgID recommends, in line with the priorities set out in the “2014-2020 Digital Growth Strategy”, the establishment of an Ecosystem Working Group (hereinafter GdL).

2017 From May, the GdLs, for the individual ecosystems, will follow the operational activities for the realisation of Ecosystems through the identification of specific ecosystem objectives, project planning and the establishment of technical discussion sites.
2018 By December, the regional administrations will have to implement their own regional electronic healthcare filing systems, inter-operable with the national infrastructure.

12.7. Instructions on Security

Below are the actions planned for the three-year period 2017-2019.

From 2017

The PAs will comply with the Technical Rules for ICT Security of Public Administrations prepared by AgID and issued by the Public Departments. While awaiting issuance, public administrations will adapt to “Minimum ICT Security Measures for Public Administrations” [101] already published by AgID.

From September, the public administrations providing critical services will adapt or implement them in accordance with the Critical Service Architectural Management Guidelines published by AgID.

The Public Administrations are responsible for verifying the updating of the state of their software against known vulnerabilities, according to the principles of continuous monitoring recommended by best security practices, and handle the emerging vulnerabilities.

The Public Administrations will report cyber incidents and potential risk situations to the CERT-PA and handle security incidents by activating updating procedures in the prescribed ways.

From June, the Public Administrations will begin the process of adapting to the provisions issued by AgID regarding the reorganisation of the “gov.it” domain.

2018 By June, the public administrations are to conclude the process of adapting to AgID’s provisions regarding the reorganisation of the “gov.it” domain.

12.8. Instructions for Change Management activities

from 2017

The administrations are responsible for appointing the Manager for the transition to the digital operating mode and recording the data on the PA Index in the manner indicated by AgID.

The administrations will participate and promote awareness, communication, training and assistance initiatives on the services provided with the enabling platforms and strategic projects.

The administrations are required to train their own staff in the optimal use of the services and to identify specialist pathways to strengthen internal digital skills.

The institutional training players shall start designing initiatives to create digital skills.

The administrations will plan, with the support of AgID, information points on the services implemented within the strategic initiatives and ecosystems on which they are involved.

From 2018

The administrations identified by AgID must draw up their own Plan; the regions and the metropolitan cities will have to act as aggregators for the other administrations in their territory according to the methods indicated by AgID and with the following timelines:

  • by April, the administrations (by category or in single form as defined above) will provide AgID with data on the consolidated expense of the previous year (for example, in 2018, administrations shall provide consolidated expenditure for 2017) and the expenditure forecast for the current three-year period (for example, in 2018, the expenditure forecast for the three-year period 2018-2020);
  • by December, the administrations are to draw up their own plans, either by category or in a single form as defined above, for the next three years (for example, in 2018, administrations shall draw up their three-year plan 2019-2021).

12.9. Instructions on the retention of IT documents

The administrations maintain their own computerised documents (digital natives or digitised analogue documents) and computer files, by:

  • purchasing services using Consip tenders;
  • cooperation agreements between administrations for the sharing of common infrastructures dedicated to conservation;
  • adhering to the services offered by conservation hubs.

Notes

[91]
[92]*www.inipec.gov.it*
[93]*https://servizi.gov.it*
[94]*http://network.ot11ot2.it/sites/default/files/opendata1_elementi_tecnici_e_strategie_v4_0.pdf*
[95]national metadata profile fully compliant with the European DCAT-AP
[96]please refer to the ontologies published on *https://dati.gov.it*
[97]*www.indicepa.gov.it*
[98]*www.inipec.gov.it*
[99]*https://servizi.gov.it*
[100]*http://www.fatturapa.gov.it/export/fatturazione/it/sdi.htm*
[101]*http://www.agid.gov.it/sites/default/files/documentazione/misure_minime_di_sicurezza_v.1.0.pdf*