DAC6 Country Profile: Italy

Register for our DAC6 email updates

Italian Parliament
In light of the COVID-19 pandemic, Italy is set to decide how they will be deferring DAC6

We are publishing a series of guides on how each EU member state has implemented DAC6. The guide provides a preview to our full up-to-date country-by-country guide to DAC6.

Our next guide focusses on the Italy’s implementation of DAC6.

This blog was originally published in July 2020 and was updated in January 2021.

Has Italy implemented DAC6?

Legislation Details

Italy’s tax authority, Ministero dell’Economia e delle finanze (Ministry of Economy and Finance), published DAC6 draft legislation, called Legislative Decree no. 100 / 30 July 2020.

Taxes covered

Italy’s legislation covers cross-border arrangements. The legislation is in line with the EU Directive and does not include domestic arrangements or any additional hallmarks.

Legal Professional Privilege

LPP applies in Italy in the following cases, to lawyers and legal service providers:

  • in case of an examination and assessment of the legal position of the client, including advice on the possibility to bring or avoid legal proceedings
  • activities of defence and assistance in legal proceedings, including information received or obtained before, during and after the conclusion of the proceedings

In cases where LPP and self-incrimination exemptions apply, the reporting obligation shifts to other intermediaries or the relevant tax payer.

Reporting

Reporting will be made via an EXML schema. The information should be submitted in Italian, and an English translation must be provided for some items.

Penalties

Penalties for non-compliance with the MDR regulation range between EUR 2,000 and EUR 21,000.

Download country profile

DAC6 resource page

VinciWorks regularly publishes helpful guides, on-demand webinars and articles related to DAC6. These resources are regularly updated as HMRC and other authoritative bodies update their guidance on DAC6 implementation. We will also be adding all of our DAC6 country profiles to the resource page.

You can view all of our DAC6 compliance resources by clicking on the button below.

DAC6 resource page

How are you managing your GDPR compliance requirements?

GDPR added a significant compliance burden on DPOs and data processors. Data breaches must be reported to the authorities within 72 hours, each new data processing activity needs to be documented and Data Protection Impact Assessments (DPIA) must be carried out for processing that is likely to result in a high risk to individuals. Penalties for breaching GDPR can reach into the tens of millions of Euros.

GDPR added a significant compliance burden on DPOs and data processors. Data breaches must be reported to the authorities within 72 hours, each new data processing activity needs to be documented and Data Protection Impact Assessments (DPIA) must be carried out for processing that is likely to result in a high risk to individuals. Penalties for breaching GDPR can reach into the tens of millions of Euros.

“In a world older and more complete than ours they move finished and complete, gifted with extensions of the senses we have lost or never attained, living by voices we shall never hear.”

Picture of James

James

VinciWorks CEO, VInciWorks

Spending time looking for your parcel around the neighbourhood is a thing of the past. That’s a promise.

How are you managing your GDPR compliance requirements?

GDPR added a significant compliance burden on DPOs and data processors. Data breaches must be reported to the authorities within 72 hours, each new data processing activity needs to be documented and Data Protection Impact Assessments (DPIA) must be carried out for processing that is likely to result in a high risk to individuals. Penalties for breaching GDPR can reach into the tens of millions of Euros.

GDPR added a significant compliance burden on DPOs and data processors. Data breaches must be reported to the authorities within 72 hours, each new data processing activity needs to be documented and Data Protection Impact Assessments (DPIA) must be carried out for processing that is likely to result in a high risk to individuals. Penalties for breaching GDPR can reach into the tens of millions of Euros.

How are you managing your GDPR compliance requirements?

GDPR added a significant compliance burden on DPOs and data processors. Data breaches must be reported to the authorities within 72 hours, each new data processing activity needs to be documented and Data Protection Impact Assessments (DPIA) must be carried out for processing that is likely to result in a high risk to individuals. Penalties for breaching GDPR can reach into the tens of millions of Euros.

GDPR added a significant compliance burden on DPOs and data processors. Data breaches must be reported to the authorities within 72 hours, each new data processing activity needs to be documented and Data Protection Impact Assessments (DPIA) must be carried out for processing that is likely to result in a high risk to individuals. Penalties for breaching GDPR can reach into the tens of millions of Euros.