Next Article in Journal
Viral but Not Verified: Analyzing Accuracy and Engagement in TikTok Discussions of IUDs
Previous Article in Journal
ATP Bioluminescence Feedback Is Associated with Reduced Residual Hand Contamination Among Healthcare Workers: A Single-Center Before-and-After Study
Previous Article in Special Issue
Threaded Antibiotic-Coated Locking Nails in Osteomyelitis-Associated Long-Bone Non-Union: Short-Term Outcomes of a Prospective Cohort
 
 
Search for Articles:
Title / Keyword
Author / Affiliation / Email
Journal
Article Type
 
 
Advanced Search
 
Section
Special Issue
Volume
Issue
Number
Page
 
Journals
Healthcare
Volume 14
Issue 11
10.3390/healthcare14111494
healthcare-logo
Submit to this Journal Review for this Journal Propose a Special Issue
Article Menu

Article Menu

share Share announcement Help format_quote Cite question_answer Discuss in SciProfiles
first_page
settings
Order Article Reprints
Font Type:
Arial Georgia Verdana
Font Size:
Aa Aa Aa
Line Spacing:
Column Width:
Background:
Hypothesis

From Criminal Liability to Patient Safety: The Possible Impact of the Italian 2025 Reform Proposal on Senior Healthcare Leadership and Clinical Risk Management

by
Sandro La Micela
1,
Gloria Stevanin
2,*,
Anna Pancheri
1,
Camilla Faes
1,
Annamaria Bonetti
3,
Silvia Atti
4,
Ilaria Tocco Tussardi
5 and
Stefano Tardivo
5,6
1
Healthcare Safety and Claims Management Service, Integrated University Healthcare Authority of Trentino, 38123 Trento, Italy
2
Provincial Hospital Service Management, Integrated University Healthcare Authority of Trentino, 38123 Trento, Italy
3
Hospital Medical Directorate, Hospital of Tione, Integrated University Healthcare Authority of Trentino, 38123 Trento, Italy
4
Hospital Medical Directorate, Hospitals of Borgo Valsugana and Cavalese, Integrated University Healthcare Authority of Trentino, 38123 Trento, Italy
5
Department of Diagnostics and Public Health, Section of Hygiene, University of Verona, 37134 Verona, Italy
6
Risk Management, University Hospital of Verona, 37126 Verona, Italy
*
Author to whom correspondence should be addressed.
Healthcare 2026, 14(11), 1494; https://doi.org/10.3390/healthcare14111494
Submission received: 27 March 2026 / Revised: 24 May 2026 / Accepted: 26 May 2026 / Published: 28 May 2026
(This article belongs to the Special Issue Continuous Quality Improvement and Patient Safety in Healthcare)
Versions Notes

Abstract

This article analyses the Italian Legislative Delegation Bill of 4 September 2025 (DDL 2025), which proposes the recontextualization of healthcare liability through the introduction of Article 590-septies into the Italian Criminal Code (c.p.) and the amendment of Article 590-sexies c.p. and of Articles 5 and 7 of the Gelli-Bianco Act (Law No. 24/2017). The study examines the extent to which the reform, if enacted, would produce a shift of criminal negligence liability from the individual frontline clinician towards the apex management figures of healthcare organizations—at both the corporate and hospital levels—and under what conditions such a shift would be compatible with the constitutional principle of personal criminal responsibility (Art. 27 Const.) and with the evidentiary criteria for criminally relevant omission. Adopting a doctrinal and jurisprudential analysis approach, the study formulates a falsifiable hypothesis, accompanied by four ex post verifiability indicators observable over a five-year time horizon following the possible entry into force of the provision. The analysis demonstrates how the DDL 2025 would recontextualize the notion of culpa—encompassing imperizia (lack of skill), negligenza (negligence), and imprudenza (imprudence), functionally comparable to forms of criminal negligence in common law systems—by linking fault assessment to contextual factors such as organizational deficiencies and resource scarcity. This approach would adopt a deflationary framework, establishing a distinction between avoidable human error and errors caused by systemic dysfunctions and foreshadowing a potential shift of liability towards apex management, who are required to ensure organizational models adequate to patient safety. This orientation, far from constituting a doctrinal novelty, would formalize ex lege a trajectory already established in civil and criminal case law of the Court of Cassation (Cass. No. 6386/2023, “Travaglino”), further intersecting with the administrative liability regime for organizations under Legislative Decree 231/2001. Significant interpretive challenges remain, related to the application of criminal liability criteria to the omissive conduct of healthcare managers, as well as to the contrasting international evidence on the behavioural effectiveness of medical liability reforms. The redefinition of top-management liability would therefore be configured not merely as a tool for the protection of the individual professional but as a derived constitutional guarantee of the right to health and the safety of care, pursued through formalized risk governance, the integration of incident reporting and organizational audit systems, the transition towards Enterprise Risk Management models, and the traceability of apex decision-making processes. Examples drawn from other European jurisdictions illustrate the heterogeneity of legal approaches to medical fault and frame the Italian proposal as a context-specific solution that nonetheless could contribute to the international debate on institutional and organizational accountability for patient safety.

1. Introduction

For over half a century, the evolution of the Italian regulatory framework on professional healthcare liability has represented one of the most persistent and complex legal challenges. This evolution constitutes a constant search for equilibrium between the fundamental constitutional right to health [1] and the need to safeguard the clinical independence of healthcare professionals, protecting them from a disproportionate risk of litigation following adverse clinical outcomes.
The Legislative Delegation Bill approved by the Council of Ministers on 4 September 2025—providing for the “Delegation to the Government in the matter of healthcare professions and provisions concerning the professional liability of healthcare practitioners” [2]—marks the latest stage in this legislative trajectory. It aims to strengthen the Italian National Health Service (Sistema Sanitario Nazionale, SSN) and redefine the criminal law interpretation of fault (colpa) in healthcare. The reform seeks to protect professionals while simultaneously safeguarding the principles of human dignity and the centrality of patients’ needs.
The historical trajectory has traversed several distinct phases over the last seven decades [3,4].
In the initial phase (approximately 1950–1970), the system evolved from a paternalistic approach—characterized by a culture of favouring medicine and deep deference towards the medical profession—towards an approach that progressively recognized patients as holders of fully enforceable rights [1]. In the absence of sector-specific statutory provisions, criminal judges initially applied by analogy the criterion set out in in Article 2236 of the Civil Code [5]. This provision—designed for the civil liability of intellectual service providers—limited liability for lack of skill (imperizia) to cases of intent or gross negligence when problems of special technical difficulty were involved.
However, the law soon affirmed its autonomy from this civil law model, as confirmed by the judgment of the Constitutional Court No. 166 of 1973 [6]. The Court held that the protection of life and physical integrity could not be subordinated to the compensatory logic of civil law, emphasizing the need to move beyond the principle of “gross negligence” as the primary shield for the conduct of healthcare professionals.
The subsequent phase (late 1970s–1980s) confirmed this shift and was characterized by heightened attention to patient rights and a consequent stringency in liability standards, leading to the undifferentiated application of ordinary evaluative criteria to healthcare conduct. This period witnessed a shift from probabilistic standards towards “possibilistic” concepts, in which any deviation from the required standard of care could give rise to criminal proceedings. This interpretative rigidity, coupled with rising societal expectations and fear of litigation, fostered defensive medicine: an attitude in which clinical decisions were guided by the need for “unassailable” documentation rather than by clinical necessity. This resulted in the over-prescription of diagnostic investigations and unnecessary treatments, driving practitioners to avoid high-risk procedures or to refuse complex patient cases.
To address these systemic dysfunctions, the case law of the 2000s sought new parameters to circumscribe criminal proceedings. A landmark development was the “Franzese” ruling by the United Sections of the Court of Cassation (Criminal United Sections, No. 30328/2002) [7]. Without modifying the substantive definition of fault, it established a rigorous and definitive criterion for the determination of the causal nexus. It required that, for a conviction to stand, the aetiological link between the professional’s conduct (whether active or omissive) and the adverse event had to be proven with a high degree of logical probability, satisfying the standard of “beyond reasonable doubt”.
Parallel to this, the use of clinical guidelines and best practices began to be recognized as soft law and objective benchmarks for evaluating professional conduct. However, the absence of statutory provisions governing the legal value of such guidelines led to profound jurisprudential inconsistencies in the decade preceding 2012, with conflicting orientations on the implications of compliance with or deviation from such recommendations [8].
Decree-Law No. 158/2012 (converted into Law No. 189/2012, known as the “Balduzzi Decree”) [9] attempted to formalize the role of clinical guidelines and reintroduced the distinction between slight and gross negligence in criminal proceedings. It granted immunity for slight negligence to practitioners who adhered to accredited guidelines and best practices. Despite its intentions, it failed to resolve pre-existing uncertainties; on the contrary, it generated jurisprudential debate regarding the absence of a clear definition of “minor negligence” and ambiguity as to which guidelines were to be considered “accredited” [10,11].
Only five years later, Law No. 24 of 8 March 2017 (the so-called “Gelli-Bianco Law”) [12], concluding a lengthy and troubled legislative process, introduced the concept of “safety of care” (Art. 1) as a constitutive element of the right to health. In terms of criminal liability, the law repealed the provision of the Balduzzi Decree and introduced Article 590-sexies of the Italian Criminal Code (c.p.—codice penale) [13]. This article limited the exclusion of punishability to cases of lack of skill (imperizia) only, provided that the guidelines appropriate to the specific case had been observed (or, in their absence, good clinical and care practices). Negligence (negligenza) and imprudence (imprudenza) remained punishable.
Despite its aims, the Gelli-Bianco Law proved interpretatively problematic as well [14]. The subsequent “Mariotti” judgment (Joint Criminal Divisions of the Court of Cassation, No. 8770/2018) [15] further specified the scope of Art. 590-sexies, limiting non-punishability to cases of minor imperizia occurring in the executive phase of the medical act, provided that appropriate guidelines had been followed. Diagnostic errors, errors in therapeutic choice, or conduct characterized by negligence or imprudence—even if minor—remained prosecutable [16,17].
Despite the framework of Law 24/2017 and the extensive jurisprudence that followed, the search for a definitive equilibrium remains ongoing. The 2025 Legislative Delegation Bill proposes further amendments to the Criminal Code and the Gelli-Bianco Law, with the goal of containing defensive medicine and strengthening the protection of healthcare professionals operating in an increasingly resource-scarce and organizationally complex system.
The Italian normative trajectory described above intersects with a broader international debate on the determinants of patient safety. International literature has long emphasized that adverse events in healthcare are predominantly the result of system-level failures rather than individual professional errors and that effective safety policies require organizational, cultural, and managerial interventions that go beyond the regulation of individual professional conduct [18,19,20,21].
In parallel, several jurisdictions have debated whether legal reform aimed at reducing individual professional liability can effectively constitute a brake on defensive medicine while simultaneously improving systemic accountability, with contrasting empirical results [22,23,24].
In this context, the Italian 2025 reform proposal may be interpreted as an attempt to translate, within a national legal framework, the international consensus on the systemic approach to patient safety, while preserving the personal nature of criminal liability under Article 27 of the Italian Constitution [25].
This article offers a critical analysis of the proposed normative framework, seeking to answer to what extent the proposed reform would produce, if enacted, a shift of criminal negligence liability in the healthcare sector from the individual frontline clinician towards the apex management figures of healthcare organizations and under what conditions such a shift would be compatible with the principle of personal criminal responsibility and with the evidentiary criteria for criminally relevant omission [25].

2. Materials and Methods

This study adopts a doctrinal and jurisprudential analysis (doctrinal–jurisprudential analysis) of the Italian normative framework governing healthcare liability and recent legislative reform proposals. Italian legal sources were selected according to a formal hierarchy: (i) constitutional sources (Constitution, Art. 32); (ii) primary sources (Criminal Code, in particular Arts. 590-sexies and the proposed Art. 590-septies; Civil Code, Art. 2236; Legislative Decree 502/1992; Legislative Decree 231/2001; Law 189/2012; Law 24/2017; and Legislative Delegation Bill of 4 September 2025); (iii) legality case law (Constitutional Court and Court of Cassation, criminal and civil divisions, with priority given to Joint Divisions rulings and judgments recognized as leading cases in the period 2002–2024); (iv) specialist medico-legal and criminal law doctrine.
The inclusion criteria for case law were: (a) relevance for the characterization of medical fault (culpa medica) and for the identification of the omissive causal nexus; (b) relevance for the position of guarantee of apex healthcare management figures; (c) relevance for the characterization of organizational fault (colpa di organizzazione). The temporal scope considered is 1973–2024, with primary focus on the period 2002–2024 (post-Franzese judgment).
The potential impact of the proposed legislative amendments is ultimately assessed from both a medico-legal and an organizational perspective within healthcare structures. To this end, a detailed analysis examines the professional profiles of the apex managers of public healthcare organizations—namely the Chief Executive Officer (Direttore Generale, DG), the Chief Medical Officer (Direttore Sanitario, DS), and the Hospital Medical Director (Direttore Medico di Presidio, DMP)—with particular attention to their respective management and supervisory functions and how the possible redefinition of apex criminal liability may represent a stimulus for further organizational improvement and with evident positive repercussions on the safety of care.
It is expressly noted that the considerations developed in this work are grounded in the analysis of a bill which, at the present time, has not yet acquired normative force. Consequently, every interpretive or applicative assessment relating to this proposal must be understood in necessarily hypothetical terms and subject to revision in light of the potential evolution of the legislative process and the subsequent jurisprudential elaboration of the courts in the years following its possible entry into force.
To enhance terminological consistency and support the interpretation of context-specific concepts, a table containing the operational definitions of the principal Italian legal terms adopted in this study is provided (Table 1).

3. Integrated Analysis and Potential Scenarios

The Legislative Delegation Bill approved by the Council of Ministers on 4 September 2025 [2] introduces innovations in both criminal and civil law, signalling a paradigm shift from previous regulatory frameworks. Specifically, the proposal includes amendments to Article 590-sexies of the Criminal Code, the introduction of a new Article 590-septies, and modifications to Articles 5 and 7 of the Gelli-Bianco Law (No. 24/2017) [14].
The revised Article 590-sexies c.p. [13] seeks to reinstate the principle of non-punishment for slight negligence on a broader scale. This moves beyond the restricted focus on “lack of skill” established by the Gelli-Bianco Law. Specifically, this amendment aims to extend the exemption to all forms of fault—negligence, imprudence, and lack of skill—provided they are classified as “minor” and occurred in the context of conduct compliant with guidelines appropriate to the specific features of the case [2].
The new Article 590-septies c.p. formalizes the contextualization of criminal fault. It links judicial assessment not only to the practitioner’s actions but also to operational context and systemic constraints. The provision delineates a series of objective and contextual parameters that must be considered when ascertaining fault or its degree, including: a scarcity of human and material resources or structural inadequacies beyond the practitioner’s control; the absence, limitation, or contradictory nature of scientific knowledge regarding the pathology or treatment; the actual availability of appropriate therapies; the complexity of the pathology or the inherent difficulty of the medical act; the specific role performed within multidisciplinary cooperation; and the presence of urgent or emergency situations [2].
Regarding Law 24/2017 [14], the Legislative Delegation Bill provides further clarifications within the civil domain. Concerning Article 5, it specifies that the application of clinical and care best practices (utilized in the absence of formal guidelines) must be evaluated against the specificity of the concrete case [2].
Furthermore, the introduction of paragraph 3-bis to Article 7 extends the evaluative criteria of Article 590-septies c.p. to civil proceedings. It mandates that courts account for contextual factors such as scarcity of human and material resources and organizational shortcomings, explicitly invoking the principles of Article 2236 of the Civil Code.
The 2025 Bill represents a significant attempt to provide legal certainty by steering jurisprudence toward a deeper understanding of the operational and organizational constraints influencing medical acts.
This approach distinguishes between avoidable human error and errors caused by organizational deficiencies, reconfiguring the determination of liability on two distinct and complementary levels: the possible decriminalization of the frontline practitioner’s fault, where the event is caused by organizational shortcomings, finds its necessary counterweight in the greater weight attributed, for the purposes of criminal imputation, to the omissions of those who, by institutional mandate, hold a systemic guarantor duty with respect to resources, organization and governance.
At a practical level, the reform paves the way for the identification of the specific natural persons on whom legal responsibility for the structural shortcomings that caused the adverse event may fall: the apex management figures—Chief Executive Officers, Chief Medical Officers and Hospital Medical Directors—who are directly responsible for managerial decisions, resource allocation and the implementation of organizational measures aimed at preventing systemic deficiencies.
This distinction would also carry significant implications for the allocation of the evidentiary and legal burden: where an adverse event cannot be entirely attributed to the conduct of an individual clinician, but instead reflects deeper systemic failures, the proposed framework would open the way for identifying those specific individuals—CEOs, CMOs and HMDs—who bear legal responsibility for such structural inadequacies by virtue of their decision-making power and institutional duty. If enacted, the reform would therefore operate on two complementary levels: on the one hand, shielding frontline practitioners from criminal liability for minor fault causally linked to organizational deficiencies beyond their control; on the other, extending the reach of culpable omission to those apex managers who held both the duty and the concrete power to prevent those failures.

3.1. Working Hypothesis and Verifiability Indicators

On the basis of the normative analysis developed in the preceding section, this work formulates the hypothesis that the complex of amendments introduced by the 2025 Legislative Delegation Bill would produce a measurable expansion of the subjects involved in criminal negligence liability in the healthcare sector. Such expansion would be expressed not through a generalized redistribution of imputability but through the subjective requalification of organizational fault attributable to the apex management figures of healthcare organizations in cases where the adverse event is aetiologically attributable, on a causal or co-causal basis, to structural, organizational, or governance deficiencies.
The hypothesis may be verified, in principle, through the systematic observation—over a five-year period following the potential entry into force of the legislation—of a set of indicators that should be understood as a working proposal rather than a definitive reference framework. These indicators stem from a reflection we undertook regarding which measurable parameters might capture the concrete effects of the law on the criminal liability of apex management figures, should it be enacted.
The indicators we propose concern: (i) changes in the number of criminal proceedings initiated against top-level managerial figures in the healthcare sector pursuant to Articles 589 and 590 of the Italian Criminal Code; (ii) qualitative shifts in the nature of the charges formulated in proceedings related to adverse events, including allegations of organizational negligence; (iii) the ratio between convictions and case dismissals in proceedings involving apex management figures; (iv) measurable changes in corporate risk governance, encompassing the formal restructuring of the clinical risk management function within organizational charts, the volume of documented organizational audits, and the proportion of budget specifically allocated to clinical risk management activities.
The intrinsic limitations of an analysis conducted in the pre-enactment phase are expressly acknowledged: the not yet prescriptive character of the Legislative Delegation Bill; the margin for modification of the text during the parliamentary process; and the impossibility of measuring ex ante the indicators listed above. The proposed indicators therefore constitute an ex post observation framework, intended for the future empirical validation or falsification of the hypothesis, whose implementation remains conditional on the actual conclusion of the legislative process.

3.2. Apex Healthcare Management: Roles and Responsibilities

This emerging legal framework creates significant challenges in determining individual and organizational responsibility. Public healthcare organizations exhibit structural variability influenced by diverse regional policy directives. Nevertheless, Article 3, paragraph 1-quater, of Legislative Decree No. 502/1992 defines the governing bodies of a public healthcare organization [26]. These include the Chief Executive Officer (CEO), supported by the Chief Administrative Officer (CAO), the Chief Medical Officer (CMO), the medical council, the executive board, and the board of statutory auditors.

3.2.1. The Chief Executive Officer (CEO)

The CEO serves as the legal representative and head of the public healthcare organization, holding supreme executive and representational authority. Specifically, the CEO
  • Adopts the corporate governance act under private law, ensuring compliance with the principles of regional (or provincial) programming;
  • Bears overall responsibility for corporate management;
  • Appoints the Chief Medical Officer and the Chief Administrative Officer, who assist in achieving the strategic objectives (thereby constituting the strategic management);
  • Issues regulatory acts and adopts the relevant interpretive and applicative guidelines;
  • Defines objectives, priorities, plans, programmes, and directives for institutional and management activities;
  • Allocates human, material, and financial resources;
  • Oversees the proper management of resources;
  • Ensures the impartiality and efficiency of administrative action;
  • Is appointed by the region or province under a fixed-term contract and may be removed for failure to achieve objectives [26].

3.2.2. The Chief Medical Officer (CMO)

The CMO, alongside the CAO, assists the CEO in institutional management through proposals and expert opinions. The CMO assumes direct professional responsibility for functions within their clinical purview. Furthermore, the CMO manages healthcare services to ensure compliance with organizational, sanitary, and public health standards. Specifically, the CMO
  • Participates in the strategic management of the organization;
  • Assumes direct professional responsibility within the specific scope of his or her competences;
  • Contributes to the CEO’s decisions of a scientific nature by formulating proposals and technical opinions [26].

3.2.3. The Hospital Medical Director (HMD)

Within public hospital facilities, the Hospital Medical Director plays a pivotal role. This figure
  • Operates in compliance with the directives issued by the Chief Medical Officer;
  • Ensures continuity of care with territorial Healthcare Districts;
  • Holds managerial, organizational, sanitary-hygiene, medico-legal, scientific, and training responsibilities;
  • Promotes the quality of healthcare services and clinical performance;
  • Is responsible for the clinical governance of the hospital;
  • Promotes initiatives aimed at coordinating and improving the efficiency, effectiveness, and appropriateness of healthcare services;
  • Manages, coordinates, supports, and supervises the medical directors of complex, departmental, and simple operative units, fostering multidisciplinary integration both within the hospital and with territorial services [26].
The mapping of the responsibilities of the management figures described above must always be contextualized against the background that resource allocation, staffing, and fund allocation are constrained by the spending ceilings imposed by regional or provincial programming and by the limits of the national health fund. The criminal negligence of an apex manager, within the framework of the proposed Art. 590-septies c.p., must be determined in terms of violation of specific duties, foreseeable and exigible in the concrete operational context of the organization.
Among the duties listed above, some are characterized by greater potential exposure under the proposed Art. 590-septies c.p., as they bear directly on the contextual parameters of the provision. In particular: (i) human resource allocation and staffing planning (CEO, CMO) correlate directly to the parameter of “scarcity of human resources”; (ii) planning and management of healthcare technologies (CMO, HMD) correlates to “scarcity of material resources”; (iii) the promotion of clinical governance, multidisciplinary integration, and safety protocols correlates to “organizational deficiencies” and “multidisciplinary cooperation”; (iv) continuing professional development and personnel training correlates to the adequacy of available “scientific knowledge” (v) the preparation and updating of emergency management plans correlates to “emergency or urgency situations”.

4. Personal Liability and Normative Frameworks

These activities entail substantial responsibilities. Executive figures may incur legal liability, including criminal charges, when professional negligence or non-compliance is established.
The practical implications of the Legislative Delegation Bill of 4 September 2025 and current regulations require careful analysis. The roles of apex management figures must be clearly defined with regard to their specific personal responsibility.
Under the proposed legislative changes, the assessment of individual healthcare professionals’ liability must take into account specific omissions by executive leadership. If governance deficits give rise to a legally relevant adverse event, responsibility (both civil and criminal) may extend to apex managers within their respective areas of competence.
Organizational responsibility of institutional and facility executives encompasses various scenarios, ranging from public health issues to broader management concerns, defined as “contextual factors” by the new legislation. Under this regulatory framework, executives may be held responsible in multiple situations based on their respective areas of responsibility:
  • Human Resources Management: Managers must ensure adequate staffing planning through systematic needs assessment. This includes the timely transmission of staffing requests to strategic management and Human Resources, the initiation of authorization procedures with regional or provincial funding bodies, the monitoring of workload sustainability, and the adoption of measures to ensure continuity of care in cases of staffing shortages.
  • Healthcare Technology Planning and Management: Managers must develop a strategic plan for the acquisition, replacement, and maintenance of biomedical technologies, in collaboration with Clinical Engineering. Such planning must be based on a systematic assessment of equipment obsolescence, the implementation of Health Technology Assessment (HTA) processes for new technologies, the analysis of the health needs of the target population, and the prioritization of investments consistent with health objectives and available resources.
  • Pharmaceutical and Medical Device Supply Chain Management: Managers must ensure the timely and appropriate availability of pharmaceuticals and medical devices. Responsibilities include verifying the functionality of procurement systems, monitoring stocks to prevent shortages, ensuring compliance with pharmacovigilance and traceability protocols, and implementing quality control systems for medical devices.
  • Continuing Medical Education (CME) Governance: Managers must ensure that healthcare personnel meet mandatory training requirements. They must guarantee equitable access to CME and professional development programmes, with particular attention to non-employed personnel (self-employed practitioners and consultants) to ensure uniform standards of clinical competence and patient safety, regardless of contractual status.
  • Emergency and Critical Event Management: Managers must ensure the preparation, regular updating, broad dissemination, and operational knowledge of emergency plans by all personnel. These include: protocols for emergency department overcrowding and mass casualty incidents; Internal Mass Emergency Plans; Internal Emergency and Evacuation Plans; and specific Safety Plans for critical areas. Responsibility encompasses the organization of periodic drills, the verification of plan effectiveness, and the definition of escalation procedures during crises.
Consequently, apex managers may incur responsibility for legally relevant adverse events causally linked to systemic deficiencies.
In cases of chronic understaffing or technological obsolescence, responsibility may fall upon the executive responsible for resource planning [27]. Managers may be held accountable even where, despite being aware of persistent organizational deficiencies, they have failed to implement alternative organizational risk mitigation strategies.
Similarly, adverse clinical outcomes may result from outdated scientific knowledge (due to inadequate institutional training), insufficient protocols, or a lack of multidisciplinary integration. Where such deficiencies stem from managerial or organizational failures, the individual responsible for promoting efficiency and minimum clinical safety standards may be held liable. Therefore, apex managers bear responsibility for systemic deficiencies, including both failure to secure adequate resources and tolerance of organizational risk. In any case, the extension of criminal liability of healthcare managers in relation to systemic failures cannot be based on a mere automatic correlation between organizational shortcomings and individual fault. In this hypothetical future scenario, any expansion of the criminal liability of apex management figures will require limiting principles that prevent every organizational inefficiency from becoming a source of culpability, and instead reconstruct fault along the threefold axis of eligibility, foreseeability, and avoidability, in line with the general principles of criminal liability: the required conduct must be concretely exigible in the given context; the adverse event must be foreseeable as a causally relevant consequence of the omission; and the omitted action must have a high logical probability of preventing the harm.

5. The Current Legal Framework

The hypothesized liability of apex management figures arising from governance deficits is by no means an abstract novelty. On the contrary, it represents the legislative formalization of established jurisprudential trends that have already emerged through judicial interpretation in both criminal and civil jurisdictions.

5.1. Entity Liability Under Legislative Decree 231/2001: Points of Intersection

The considerations developed concerning the individual criminal liability of apex managers intersect with the distinct, yet complementary, regime of administrative liability of organizations provided for by Legislative Decree 231/2001 [28]. This legislation—originally conceived for offences against the public administration and progressively extended to include, among others, culpable manslaughter and serious culpable bodily harm committed in violation of regulations on accident prevention and occupational health (Art. 25-septies)—establishes an administrative liability arising from the commission of offences in the interest or for the benefit of the organization. The application of Legislative Decree 231/2001 to public healthcare organizations has been the subject of intense doctrinal and jurisprudential debate, with conflicting positions as to whether such entities fall within the concept of “entity” relevant for the purposes of the provision.
Regardless of the outcome of this debate, the suitability of the organization and management model provided for by Art. 6 of Legislative Decree 231/2001—as an exempting instrument in the event of an offence committed by an apex individual—stands in evident conceptual continuity with the criteria of organizational adequacy that the proposed Art. 590-septies c.p. would valorise for purposes of individual fault determination. An organizational framework compliant with the criteria of Legislative Decree 231/2001—documented, monitored, and traceable—would therefore constitute, even within the proposed reform framework, a substantial evidentiary element in favour of the strategic management in individual criminal proceedings, as well as a corporate risk prevention instrument.

5.2. Civil Liability and the “Travaglino” Judgment

In civil proceedings, the organizational aspects of healthcare structures received a decisive impetus from the Third Section of the Court of Cassation through judgment No. 6386/2023 (the “Travaglino” judgment) [29]. The Court addressed a case of healthcare-associated infection (HAI) resulting in death, in which widespread deficiencies in hospital-level infection prevention and control systems were alleged. The Court reaffirmed that the healthcare organization is liable for nosocomial infections arising during hospitalization when it is unable to demonstrate that it has adopted all appropriate and up-to-date preventive measures, thereby emphasizing the central role of organizational obligations and the regulation of the burden of proof. This landmark judgment provided an exhaustive catalogue of preventive measures, introducing specific evidentiary burdens required to attest that such measures had been effectively developed, adopted, and monitored and identifying the specific management figures bearing the corresponding guarantee obligations.
Although confined to the civil dimension of liability, without directly addressing the criminal liability of apex figures, the judgment marked a crucial turning point. Fault is no longer understood as an undifferentiated imputation to the institution as such; it may instead be attributed subjectively to the apex managers burdened with specific prevention and supervisory obligations. It follows that the institution’s liability is apportioned according to the specific omissions of each management figure in ensuring the managerial and sanitary-hygiene conditions necessary to prevent adverse events [29].

5.3. Ministerial Decree No. 232/2023 as a Possible Implementing Tool of Law No. 24/2017 and Benchmark of Organizational Adequacy

Ministerial Decree No. 232/2023 of 15 December 2023 [30], as an implementing instrument of Law No. 24/2017, has assumed importance not only in the quantification of risk reserves and claims provisions but also as a parameter of adequacy of the corporate organizational structure in the area of safety of care. Its failure or incomplete transposition by the strategic management, especially in the absence of processes for the identification, analysis, monitoring, and mitigation of clinical risk, could characterize elements of organizational fault with possible criminal relevance. The integration of different categories of risk—clinical, operational, financial, strategic, technological, legal, and reputational—now structurally characterizes modern healthcare organizations and is progressively leading to the overcoming of the reactive approach typical of traditional risk management, in favour of an integrated proactive governance system implemented through Enterprise Risk Management programmes [31]. In Italy, the Lombardy Region has formally initiated this transition with the approval of the Healthcare Enterprise Risk Management (HERM) model pursuant to Welfare Directorate-General Decree No. 20638 of 21 December 2023 [32], documented in the literature as the first Italian experience of systematic ERM in healthcare [33]. A parallel Italian line of research [34] is extending the application of ERM principles to the mitigation of risks associated with the introduction of artificial intelligence in healthcare processes.

5.4. Criminal Liability: Jurisprudential Precedents

In criminal law, while media and procedural attention typically focus on frontline practitioners, high-court jurisprudence has delineated a precise guarantor position for institutional management facing resource scarcity or systemic dysfunction.
Indeed, criminal proceedings have already been initiated to ascertain the liability of CEOs, CMOs (Chief Medical Officers), Hospital Medical Directors (HMDs), and other apex management figures whenever a harmful event resulted from manifest structural failures, chronic staffing shortages, failure to provide essential medical supplies, or the inadequacy of operational protocols.
Doctrine and case law have progressively valorised the concept of organizational fault (colpa di organizzazione)—a category that describes forms of liability in which the harmful event does not derive from a single individually identifiable act of negligence but from structural, procedural, or governance deficits attributable to the organization as a whole—originally developed in connection with the crime prevention models of Legislative Decree 231/2001 [35].
In this perspective, the obligation, enshrined in Art. 2086 of the Civil Code [36], to establish an organizational, administrative, and accounting structure adequate to the nature and size of the enterprise assumes particular importance especially for healthcare structures, in which organizational deficiencies may constitute a violation of precautionary rules and, in the presence of a causal nexus with the harmful event, give rise to civil and criminal liability on the part of the apex individuals responsible for preventing them [37,38,39].
Consequently, the absence or incomplete presence of an adequate organizational structure, as well as the absence of effective monitoring of its application, efficiency, and results, may constitute an index of organizational fault even in criminal terms, where the adverse event can in the specific case be traced back to such systemic deficiencies.
In the judgment of the Court of Cassation, Criminal Section, No. 4981/2004 [40], a fatal accident occurring in a hyperbaric chamber as the result of a fire is examined, recognizing the criminal liability of the medical director for failing to ensure adequate staffing and safety measures in a high-risk technological context. The decision focuses on the director’s position of guarantee with respect to the structural and organizational conditions required for the protection of patients and workers.
By contrast, the judgment of the Court of Cassation, Criminal Section, No. 18334/2018 [41], clarifies the limits of apex criminal liability, affirming that the head of a department cannot be held responsible for adverse events caused by the conduct of subordinate physicians where he or she has correctly fulfilled his or her duties of organization, management, coordination, and supervision. While reaffirming the principle of the personal nature of criminal liability, the judgment confirms that the correct performance of managerial functions leads to a demonstration of the absence of organizational liability.
The judgment of the Court of Cassation, Criminal Section, No. 32477/2019 [42], concerns the death of a patient in a private care home, in which the Court attributes liability to the medical director for “organizational fault” (colpa di organizzazione), emphasizing that the director is the ultimate guarantor of the quality of care and personnel coordination. Criminal liability may arise when the absence of protocols for patient admission, risk management, communication, and emergency response contributes causally to the adverse event [43].
Furthermore, the judgment of the Court of Cassation, Criminal Section, No. 50619/2019 [44], affirms that the manager who delegates assigned duties does not entirely lose his or her position of guarantee and may be held criminally liable where it is demonstrated that he or she failed to issue adequate instructions, to correctly organize the work of collaborators, or to verify compliance with organizational criteria [45].
The jurisprudential and normative evolution highlighted appears to anticipate the direction taken by the 2025 bill, which for the first time brings to the fore the issue of organizational risk that, while on the one hand may represent a ground for exemption for the clinician, on the other cannot shift the court’s attention away from the duties of apex figures in the area of patient safety and clinical risk management.
The reform trajectory of the 2025 Legislative Delegation Bill aligns structurally with this trend. The proposed introduction of Article 590-septies c.p. appears destined to crystallize the concept of “organizational fault”. This shifts a broader, objective concept—traditionally confined to civil litigation—toward a more pronounced subjective accountability within the institutional hierarchy.
Where a harmful event arises from organizational inadequacy, criminal liability may ascend the managerial chain of command. Executives will no longer be able to plead ignorance regarding practices or deficiencies that they had a legal duty to govern, prevent, and control. Consequently, organizational risk transitions from being a mere mitigating circumstance for the practitioner to becoming the foundational element of negligence for management. This shift is further bolstered by Article 1 of Law 24/2017, which elevates the safety of care to a constitutional rank as an integral part of the right to health. Apex management figures could thus be charged with a direct violation of this right—not merely as culpa in vigilando but as direct personal negligence for the omission of functional acts essential to constitutionally guaranteed safety.
This shift is further supported by Art. 1 of Law 24/2017, which expressly qualifies the safety of care as an integral part of the right to health constitutionally protected by Art. 32 of the Constitution, affirming that it is achieved also through the totality of activities aimed at the prevention and management of risk associated with the delivery of healthcare services and the appropriate use of structural, technological, and organizational resources.
The transition from normative theory to judicial practice will nonetheless pose significant interpretive complexities. Unlike civil proceedings, where the healthcare organization bears the burden of proving exact compliance within the contractual relationship with the patient, in criminal proceedings the constitutional presumption of innocence prevails and the burden of proof rests entirely with the prosecution. For a Chief Medical Officer or a Hospital Medical Director to be held criminally liable, it is not sufficient to establish a generic state of disorganization.
The evidentiary criterion enunciated by the Joint Divisions of the Court of Cassation with the Franzese judgment (Cass. Joint Divisions No. 30328/2002) in the omissive scenario of the healthcare manager remains a complex operation. For the purpose of establishing the causal nexus in culpable omissive offences, a twofold verification is required: (i) proof, according to the criterion of high logical probability, that the omitted obligatory conduct, if carried out, would have prevented the event; (ii) counterfactual verification of the exclusion, beyond reasonable doubt, of alternative causal pathways.
While it is true that criminal case law has already concretely applied these principles to omissive managerial fault, one cannot deny the practical difficulty in distinguishing, in the specific case, the criminal relevance of the various responsibilities, especially where the adverse event is generated by the interaction of a plurality of systemic deficiencies extending to the possible fault of the individual practitioner.
It should be noted that the orientation described is not free from doctrinal and strictly operational objections. First, the possible expansion of the area of criminal liability to apex managers risks generating applicative uncertainty in a legal domain where the importance of the burden of proof is particularly relevant to procedural sustainability. Second, there is a risk that systemic responsibility will always be invoked as an indemnity shield for the individual practitioner’s fault. Third, the proof of the causal nexus between the organizational omission and the adverse event, in the light of the stringent criminal evidentiary criteria for the determination of fault, presents technical difficulties of complex resolution.
It is furthermore appropriate to maintain prudence in projections regarding the behavioural effectiveness of the reform. International literature on the impact of medical liability reforms on clinical behaviour and defensive medicine shows contrasting results: studies conducted in different contexts [22,23,24] document that the modification of the individual liability regime alone does not automatically translate into a measurable reduction of defensive medicine or a systemic improvement of safety in the absence of parallel interventions on organizational culture, training, and error learning systems—which require a complementary investment in risk governance, managerial training, and institutional accountability systems.

5.5. Broader Relevance and Transferability of the Italian Reform Model

The analysis carried out here is, by methodological choice, focused on a single national legal system; the trajectory it describes, however—the progressive shift from the fault of the individual practitioner towards organizational liability as a possible locus of imputation in the healthcare domain—reflects a tension that is not exclusively Italian. International literature has consistently documented that adverse events in healthcare are often systemic in origin rather than attributable to the isolated error of a single healthcare professional alone [18,19,20,21].
This notion has been strongly endorsed by the OECD as well, which has emphasized the need to move beyond a punitive model centred on individual fault (the “person approach”) in favour of a “just culture”, in which the accountability of healthcare organizations occupies a central role. In this regard, the OECD has reported that all 25 countries responding to the 2019 Survey of Patient Safety Governance had already adopted dedicated legislation for the promotion of patient safety. The legal instruments through which this premise has been translated into actionable accountability mechanisms differ substantially across jurisdictions, however, partly because they are shaped by the broader governance models of the individual national systems [46].
France, with Loi n° 2002-303 of 4 March 2002 (the “Loi Kouchner”), introduced a hybrid compensation pathway in which no-fault indemnification of therapeutic hazard (aléa thérapeutique) under solidarité nationale, administered through ONIAM, coexists with an amicable, non-binding conciliation procedure before the regional Commissions de Conciliation et d’Indemnisation; in order to analyse compensation data and identify the most preventable incidents, an Observatory of Medical Risks (Observatoire des risques médicaux) was subsequently established in 2005 [47]. In Germany, the Patientenrechtegesetz of 26 February 2013 codified the treatment contract within the Bürgerliches Gesetzbuch, introducing specific documentation duties and reversing the burden of proof in cases of fully manageable risk and gross treatment error; the systemic quality and risk management obligations binding on hospitals remain regulated separately [48,49]. In the United Kingdom, following the 2013 Francis Report on the serious failures of the Mid-Staffordshire NHS Trust, Regulation 20 of the Health and Social Care Act 2008 (Regulated Activities) Regulations 2014 introduced a statutory organizational duty of candour, binding on registered providers as institutions and operating in parallel with the professional duties imposed on individual clinicians by the General Medical Council and the Nursing and Midwifery Council [50]. Lastly, Sweden, Denmark, Norway and Finland have for decades operated patient-injury compensation schemes described as “no-fault”, resting on an objective criterion of avoidability that decouples individual compensation from the proof of fault; part of the literature notes that such schemes operate alongside institutional mechanisms oriented towards incident reporting and learning (the “learning approach”), although the actual strength of the preventive and accountability effects typical of fault-based liability continues to raise debate and concern [51].
These divergent solutions share a common analytical premise—the predominantly systemic origin of adverse events—but differ substantially in the legal instrument adopted to render liability operational, including in its organizational dimension. What distinguishes the Italian reform proposal is its possible codification, within the criminal law domain, of organizational deficiency as a condition limiting the liability of the individual practitioner—and, in so doing, opening the way to the introduction of organizational fault—rather than through no-fault compensation systems or forms of regulatory liability of healthcare entities. This specificity reflects features distinctive of the Italian system—including the constitutional principle of the personal nature of criminal liability (Art. 27 Cost.), the doctrine of the guarantor position (posizione di garanzia), and the evidentiary criterion of high logical probability established by the Franzese judgment—and is therefore difficult to transpose to different legal systems. The underlying analytical approach nevertheless retains a broader relevance: the identification of apex management figures as institutional bearers of legal duties with respect to organizational conditions. By directly affecting patient safety outcomes, such figures engage with the international debates currently underway on clinical governance and institutional accountability in healthcare. From this perspective, the Italian proposal is best interpreted not as a legislative template to be replicated but as a starting point for scholarly and legal reflection on how to translate systems thinking about patient safety into actionable institutional obligations.

6. Conclusions

The formulation of the new Article 590-septies of the Italian Criminal Code, as proposed by the 2025 legislative delegation bill, would—if enacted—represent the first piece of legislation to formalize an emerging jurisprudential trend, conferring for the first time formal statutory recognition upon organizationally grounded criminal negligence.
Although the legislative process remains ongoing, and further amendments in the course of parliamentary debate cannot be excluded, the bill’s formulation already offers a valuable opportunity for in-depth technical analysis. The possible evolution of this provision, regardless of its ultimate adoption, demands a no longer passive role from scientific and legal communities. Without waiting for the issuance of implementing decrees, stakeholders would need to engage with the innovative criteria underpinning the reform in order to anticipate its effects and contribute meaningfully to the institutional debate.
Beyond the interpretive ambiguities and operational challenges that will inevitably arise, the direction set by the 2025 draft bill—read in conjunction with the principles recently established by the Court of Cassation—extends beyond the mere possibility of relieving individual healthcare professionals of criminal liability in specific cases and sends a clear signal to healthcare organizations and their executives. It is no longer tenable to treat criminal negligence as a variable exclusively tied to individual professional error; preventive and proactive action becomes necessary, achievable also through the adoption of rigorous assessment tools for organizational and managerial risk.
In light of the analysis conducted, we consider it important to emphasize that, while the assessment of organizational negligence does not represent, strictly speaking, a new jurisprudential strand—a principle already partly consolidated by criminal and civil case law—the novelty lies rather in its proposed legislative codification. The new Article 590-septies, if approved, would constitute the first systematic provision aimed at linking medical negligence also to objective and systemic parameters.
Should the reform be approved, individual healthcare professionals could invoke, as a means of mitigating their own criminal liability, structural inadequacies and resource constraints, asking the court to assess their professional conduct in light of the structural context in which the error occurred. This shift, which could not be allowed to restrict the rights of the injured party, would also transfer a degree of liability toward the managerial and organizational sphere.
We believe that the redefinition of executive liability—considered beyond its strictly criminal law dimensions and approached with a constructive and proactive stance—could drive a genuine improvement and rethinking of the healthcare delivery model, one that moves beyond mere compliance obligations and repositions key instruments as central tools of clinical governance. In this context, the traceability of decision-making processes, the appropriate allocation of resources, and the formalization of safety protocols should no longer be confined to regulatory fulfilment but should instead serve as a fundamental objective benchmark for assessing the appropriateness of senior management functions.
The consolidation of a structured incident reporting system, the introduction of periodic organizational audits focused on high-risk areas, the implementation and monitoring of all appropriate preventive measures for the control of healthcare-associated infections, the traceability of managerial decision-making through documentary standards, the progressive integration of organizational models into a unified risk governance framework, targeted managerial training in risk governance, and the transition from a traditional approach to risk management toward an integrated Enterprise Risk Management (ERM) model may all come to constitute indispensable evidentiary obligations for healthcare organizations and their apex managers.
Interpreted in this proper perspective, the redefinition of executive liability may therefore represent the principal objective benchmark for measuring the exercise of managerial functions and an essential prerequisite for pursuing the safety of care and the constitutional protection of patients’ right to health.
Although not directly exportable to other legal systems, the Italian approach could contribute to the broader international debate on how to translate systems thinking about patient safety into enforceable institutional obligations.

Author Contributions

Conceptualization, S.L.M. and G.S.; methodology, S.L.M. and G.S.; resources, S.L.M., G.S., A.P., C.F., A.B., S.A., I.T.T. and S.T.; writing—original draft preparation, S.L.M. and G.S.; writing—review and editing, S.L.M., G.S., A.P., C.F. and I.T.T.; supervision, S.T. All authors have read and agreed to the published version of the manuscript.

Funding

This research received no external funding.

Institutional Review Board Statement

Not applicable.

Informed Consent Statement

Not applicable.

Data Availability Statement

No new data were created or analyzed in this study. Data sharing is not applicable to this article.

Conflicts of Interest

The authors declare no conflicts of interest.

Abbreviations

The following abbreviations are used in this manuscript:
CAOChief Administrative Officer
CEOChief Executive Officer
CMEContinuing Medical Education
CMOChief Medical Officer
HAIHealthcare-Associated Infections
HMDHospital Medical Director
HTAHealth Technology Assessment
SSNSistema Sanitario Nazionale (Italian National Service)
c.p.Codice Penale (Italian Criminal Code)

References

  1. Italian Republic. Constitution of the Italian Republic. In Gazzetta Ufficiale Della Repubblica Italiana 1947, No. 298; Italian Republic: Rome, Italy, 1947; Volume 32. [Google Scholar]
  2. Council of Ministers. Delegation Bill: Delegation to the Government on Healthcare Professions and Provisions Concerning Professional Liability of Healthcare Professionals; Proposed Delegation Bill: Rome, Italy, 2025. [Google Scholar]
  3. De Lia, A. Medical Negligence: From the Decline of the “Balduzzi” Model to the Rise of a New System. 2017. Available online: https://archiviopenale.it/la-colpa-medica-dal-tramonto-del-modello-balduzzi-allalba-di-un-nuovo-sistema-brevi-note-su-una-riforma-in-stile-pulp/articoli/15168 (accessed on 21 May 2026).
  4. Foderà, G.S. Notes on Liability for Medical Negligence Between Past and Present. 2018. Available online: https://archiviopenale.it/File/DownloadArticolo?codice=ffb755ac-8d7e-4ff7-9c9e-371f066dccf6&idarticolo=15322 (accessed on 21 May 2026).
  5. Italian Republic. Civil Code, Art. 2236; Royal Decree No. 262 of 16 March 1942. Available online: https://www.normattiva.it/uri-res/N2Ls?urn:nir:stato:regio.decreto:1942-03-16;262!vig=2020-12-04 (accessed on 12 May 2026).
  6. Italian Constitutional Court. Judgment No. 166, 22 November 1973. In Gazzetta Ufficiale Della Repubblica Italiana 1973, No. 321; Italian Constitutional Court: Rome, Italy, 1973. [Google Scholar]
  7. Italian Court of Cassation, Joint Criminal Sections. Judgment No. 30328; Italian Court of Cassation, Joint Criminal Sections: Rome, Italy, 2002. [Google Scholar]
  8. Canzio, G.; Proto Pisani, P. Historical Evolution and Trends in Supreme Court Case Law Concerning Medical Negligence. 2019. Available online: https://www.cortisupremeesalute.it/article/evoluzione-storica-e-linee-di-tendenza-della-giurisprudenza-di-legittimita-in-tema-di-colpa-medica/ (accessed on 21 May 2026).
  9. Italian Republic. Decree-Law No. 158 of 13 September 2012, Converted into Law No. 189 of 8 November 2012 (“Balduzzi Decree”). Gazzetta Ufficiale della Repubblica Italiana 2012, No. 214. 13 September 2012; Available online: https://www.normattiva.it/atto/caricaDettaglioAtto?atto.dataPubblicazioneGazzetta=2012-11-10&atto.codiceRedazionale=12A11988&tipoDettaglio=multivigenza (accessed on 12 May 2026).
  10. Guerra, G. The relevance of clinical guidelines in the assessment of physicians’ liability after the Balduzzi Law. Politiche Sanitarie 2013, 14, 3. [Google Scholar]
  11. Garzone, F.P. Criminal Healthcare Liability in the Transition from the Balduzzi Law to the Gelli Law. Available online: https://www.diritto.it/la-responsabilita-penale-sanitaria-nel-passaggio-dalla-legge-balduzzi-alla-legge-gelli/ (accessed on 14 May 2026).
  12. Italian Republic. Law No. 24 of 8 March 2017 (“Gelli-Bianco Law”). In Gazzetta Ufficiale Della Repubblica Italiana 2017, No. 64; Italian Republic: Rome, Italy, 2017; Available online: https://www.normattiva.it/atto/caricaDettaglioAtto?atto.dataPubblicazioneGazzetta=2017-03-17&atto.codiceRedazionale=17G00041&tipoDettaglio=singolavigenza&classica=true&dataVigenza=02/08/2025&generaTabId=true&bloccoAggiornamentoBreadCrumb=true&title=lbl.dettaglioAtto (accessed on 12 May 2026).
  13. Italian Republic. Criminal Code, Art. 590-Sexies, Introduced by Art. 6 of Law No. 24/2017. Available online: https://www.normattiva.it/uri-res/N2Ls?urn:nir:stato:legge:2017;24!vig=~art6 (accessed on 12 May 2026).
  14. Di Florio, M. Reflections on the New Offense of Negligent Liability in Healthcare (Art. 590-sexies Italian Criminal Code). 2017. Available online: https://archiviopenale.it/File/DownloadArticolo?codice=e6d7c75a-589f-4375-ab95-37dc33e1b1c8&idarticolo=15153 (accessed on 21 May 2026).
  15. Italian Court of Cassation, Joint Criminal Sections. Judgment No. 8770; Italian Court of Cassation, Joint Criminal Sections: Rome, Italy, 2017. [Google Scholar]
  16. Cuppelli, C. Art. 590-Sexies of the Italian Criminal Code in the Reasoning of the Joint Sections: A “Constitutionally Compliant” Interpretation of (Still Punishable) Medical Negligence. Available online: https://archiviodpc.dirittopenaleuomo.org/d/5893-L-art-590-sexies-cp-nelle-motivazioni-delle-sezioni-unite-un-interpretazione--costituzionalmente-co (accessed on 14 May 2026).
  17. Piccialli, P. Medical Negligence in Recent Italian Court of Cassation Case Law. Available online: https://ldalegal.it/responsabilita-medica-la-cassazione-chiarisce-i-rapporti-tra-struttura-sanitaria-e-medico-in-caso-di-malpractice/ (accessed on 14 May 2026).
  18. Reason, J. Human error: Models and management. BMJ 2000, 320, 768–770. [Google Scholar] [CrossRef] [PubMed]
  19. Vincent, C. Patient Safety, 2nd ed.; Wiley-Blackwell: Chichester, UK, 2010. [Google Scholar]
  20. Reason, J. Managing the Risks of Organizational Accidents; Ashgate: Aldershot, UK, 1997. [Google Scholar]
  21. World Health Organization. Patient Safety: Making Health Care Safer; World Health Organization: Geneva, Switzerland, 2017. [Google Scholar]
  22. Mello, M.M.; Chandra, A.; Gawande, A.A.; Studdert, D.M. National costs of the medical liability system. Health Aff. 2010, 29, 1569–1577. [Google Scholar] [CrossRef] [PubMed]
  23. Studdert, D.M.; Mello, M.M.; Sage, W.M.; DesRoches, C.M.; Peugh, J.; Zapert, K.; Brennan, T.A. Defensive medicine among high-risk specialist physicians in a volatile malpractice environment. JAMA 2005, 293, 2609–2617. [Google Scholar] [CrossRef] [PubMed]
  24. Kessler, D.P.; McClellan, M. Do doctors practice defensive medicine? Q. J. Econ. 1996, 111, 353–390. [Google Scholar] [CrossRef]
  25. Italian Republic. Constitution of the Italian Republic, Art. 27. In Gazzetta Ufficiale Della Repubblica Italiana 1947, No. 298; Italian Republic: Rome, Italy, 1947.
  26. Italian Republic. Legislative Decree No. 502 of 30 December 1992. In Gazzetta Ufficiale Della Repubblica Italiana 1992, No. 305; Italian Republic: Rome, Italy, 1992; Available online: https://www.normattiva.it/uri-res/N2Ls?urn:nir:stato:decreto.legislativo:1992-12-30;502!vig=%20 (accessed on 12 May 2026).
  27. Walshe, K.; Shortell, S.M. When things go wrong: How healthcare organizations deal with major failures. Health Aff. 2004, 23, 103–111. [Google Scholar] [CrossRef] [PubMed]
  28. Italian Republic. Legislative Decree No. 231 of 8 June 2001. In Gazzetta Ufficiale Della Repubblica Italiana 2001, No. 140; Italian Republic: Rome, Italy, 2001; Available online: https://www.normattiva.it/atto/caricaDettaglioAtto?atto.dataPubblicazioneGazzetta=2001-06-19&atto.codiceRedazionale=001G0293&tipoDettaglio=multivigenza&classica=true&generaTabId=true&bloccoAggiornamentoBreadCrumb=true&title=lbl.dettaglioAtto (accessed on 12 May 2026).
  29. Italian Court of Cassation, Third Civil Section. Judgment No. 6386; Italian Court of Cassation, Third Civil Section: Rome, Italy, 2023. [Google Scholar]
  30. Ministry of Enterprises and Made in Italy; Ministry of Health. Ministerial Decree No. 232 of 15 December 2023. In Gazzetta Ufficiale Della Repubblica Italiana 2024, No. 51; Ministry of Enterprises and Made in Italy: Rome, Italy, 2024. [Google Scholar]
  31. Etges, A.P.B.D.S.; Grenon, V.; Lu, M.; Cardoso, R.B.; de Souza, J.S.; Kliemann Neto, F.J.; Felix, E.A. Development of an enterprise risk inventory for healthcare. BMC Health Serv. Res. 2018, 18, 578. [Google Scholar] [CrossRef] [PubMed]
  32. Lombardy Region, Directorate General for Welfare. Decree No. 20638 of 21 December 2023: HERM Model. In Bollettino Ufficiale Della Regione Lombardia; Lombardy Region, Directorate General for Welfare: Milan, Italy, 2023. [Google Scholar]
  33. Burato, E.; Scotti, L.; Trombetta, E.; Taddei, G.; Audino, A.; Malinverno, E.; Molteni, D.; Saporetti, G.; Rossodivita, A.; Castaldi, S.; et al. The ERM experience of the Lombardy Region as a tool for improving the safety of the regional healthcare system. Ig. Sanita Pubblica 2023, 80, 101–109. [Google Scholar]
  34. Di Palma, G.; Scendoni, R.; Tambone, V.; Alloni, R.; De Micco, F. Integrating enterprise risk management to address AI-related risks in healthcare: Strategies for effective risk mitigation and implementation. J. Healthc. Risk Manag. 2025, 44, 25–33. [Google Scholar] [CrossRef] [PubMed]
  35. Palmieri, G. Structural and Organizational Deficiencies of Hospital Organizations. 2021. Available online: https://www.giurisprudenzapenale.com/2021/01/31/le-carenze-strutturali-ed-organizzative-delle-aziende-ospedaliere-quale-nuova-frontiera-della-responsabilita-da-reato-degli-enti-collettivi-ex-d-lgs-231-2001-analisi-in-una-prospettiva-comparatistic/ (accessed on 21 May 2026).
  36. Italian Republic. Civil Code, Art. 2086, as amended by Legislative Decree No. 14 of 12 January 2019. In Gazzetta Ufficiale Della Repubblica Italiana 2019, No. 30; Italian Republic: Rome, Italy, 2019; Available online: https://www.gazzettaufficiale.it/atto/serie_generale/caricaArticolo?art.versione=2&art.idGruppo=262&art.flagTipoArticolo=2&art.codiceRedazionale=042U0262&art.idArticolo=2086&art.idSottoArticolo=1&art.idSottoArticolo1=10&art.dataPubblicazioneGazzetta=1942-04-04&art.progressivo=0 (accessed on 12 May 2026).
  37. Bolcato, M.; Rodriguez, D.; Aprile, A.; Fedeli, P.; Frati, P.; Fineschi, V. Organizational liability: New frontier of medical malpractice? Healthcare 2021, 9, 1552. [Google Scholar] [CrossRef]
  38. La Russa, R.; Viola, R.V.; D’Errico, S.; Aromatario, M.; Maiese, A.; Anibaldi, P.; Napoli, C.; Frati, P.; Fineschi, V. Analysis of inadequacies in hospital care through medical liability litigation. Int. J. Environ. Res. Public Health 2021, 18, 3425. [Google Scholar] [CrossRef] [PubMed]
  39. Briner, M.; Kessler, O.; Pfeiffer, Y.; Wehner, T.; Manser, T. Assessing hospitals’ clinical risk management: Development of a monitoring instrument. BMC Health Serv. Res. 2010, 10, 337. [Google Scholar] [CrossRef] [PubMed]
  40. Italian Court of Cassation, Fourth Criminal Section. Judgment No. 4981; Italian Court of Cassation, Fourth Criminal Section: Rome, Italy, 2004. [Google Scholar]
  41. Italian Court of Cassation, Fourth Criminal Section. Judgment No. 18334; Italian Court of Cassation, Fourth Criminal Section: Rome, Italy, 2018. [Google Scholar]
  42. Italian Court of Cassation, Fourth Criminal Section. Judgment No. 32477; Italian Court of Cassation, Fourth Criminal Section: Rome, Italy, 2019. [Google Scholar]
  43. Fontana, M. Italian Court of Cassation, Judgment No. 32477/2019. Available online: https://portale.fnomceo.it/cassazione-penale-sentenza-n-32477-19-responsabilita-dellanestesista-e-del-direttore-sanitario/ (accessed on 12 May 2026).
  44. Italian Court of Cassation, Criminal Section. Judgment No. 50619; Italian Court of Cassation, Criminal Section: Rome, Italy, 2019. [Google Scholar]
  45. Mastrantonio, G. Criminal Liability of Managers of Public or Private Healthcare Facilities. Available online: https://www.avvocatoguidi.com/post/la-responsabilita-penale-del-dirigente-della-struttura-sanitaria-pubblica-o-privata (accessed on 14 May 2026).
  46. Auraaen, A.; Saar, K.; Klazinga, N. System Governance Towards Improved Patient Safety: Key Functions, Approaches and Pathways to Implementation; OECD Health Working Papers, No. 120; OECD Publishing: Paris, France, 2020. [Google Scholar] [CrossRef]
  47. Thouvenin, D. French Medical Malpractice Compensation Since the Act of 4 March 2002: Liability Rules Combined with Indemnification Rules and Correlated with Several Kinds of Proceedings. Drexel Law Rev. 2011, 4, 165–211. Available online: https://drexel.edu/~/media/Files/law/law%20review/fall_2011/Thouvenin.ashx (accessed on 21 May 2026).
  48. Stauch, M.S. Medical Malpractice and Compensation in Germany. Chic.-Kent Law Rev. 2011, 86, 1139–1168. Available online: https://scholarship.kentlaw.iit.edu/cklawreview/vol86/iss3/7 (accessed on 21 May 2026).
  49. Sommer, S.A.; Geissler, R.; Stampfl, U.; Wolf, M.B.; Radeleff, B.A.; Richter, G.M.; Kauczor, H.U.; Pereira, P.L.; Sommer, C.M. Medical Liability and Patient Law in Germany: Main Features with Particular Focus on Treatments in the Field of Interventional Radiology. Rofo 2016, 188, 353–358. [Google Scholar] [CrossRef] [PubMed]
  50. Quick, O. Duties of Candour in Healthcare: The Truth, the Whole Truth, and Nothing But the Truth? Med. Law Rev. 2022, 30, 324–347. [Google Scholar] [CrossRef] [PubMed]
  51. Ulfbeck, V.; Hartlev, M.; Schultz, M. Malpractice in Scandinavia. Chic.-Kent Law Rev. 2012, 87, 111–129. Available online: https://scholarship.kentlaw.iit.edu/cklawreview/vol87/iss1/6 (accessed on 21 May 2026).
Table 1. Glossary of key Italian legal terms used in this article.
Table 1. Glossary of key Italian legal terms used in this article.
Legal TermItalian TermOperational Definition
Criminal CodeCodice penale (c.p.)The Italian Criminal Code, enacted by Royal Decree No. 1398 of 19 October 1930 and subsequently amended. The primary source of substantive criminal law in Italy. Cited throughout this article as "c.p." in references to individual provisions (e.g., Art. 40 c.p., Art. 590-sexies c.p., Art. 590-septies c.p.).
Negligence/FaultColpaAbsence of intent to cause a harmful event, occurring due to breach of a duty of prudence, diligence, or skill (Arts. 43 and 589–590 c.p.).
Lack of skillImperiziaDeficit of technical competence. Under Art. 590-sexies c.p., the only form of fault for which non-punishability may be invoked.
Negligence stricto sensuNegligenzaOmission of precautions due in professional activity. Remains fully punishable under Art. 590-sexies c.p.
ImprudenceImprudenzaHasty, reckless, or insufficiently considered action. Remains fully punishable under Art. 590-sexies c.p.
Gross negligenceColpa graveMost severe degree of fault; blatant and inexcusable violation of diligence rules.
Slight negligenceColpa lieveLesser degree of fault. Under DDL 2025, all forms classified as slight and guideline-compliant would be exempt from criminal liability.
Causal nexusNesso causaleAetiological link between conduct and harmful event. In criminal proceedings: high logical probability (Franzese, No. 30328/2002).
Professional liabilityResponsabilità professionaleLiability from negligent/unskilful professional service. In healthcare, governed by Law No. 24/2017.
Guarantor positionPosizione di garanziaLegal duty to prevent harmful events by virtue of institutional role. Basis for criminal liability for improper omission (Art. 40(2) c.p.).
Criminal liabilityResponsabilità penaleStrictly personal and blameworthy liability (Art. 27 Const.); requires objective and subjective elements.
Organizational faultColpa di organizzazioneLiability arising from structural, procedural, or governance deficits attributable to the organization. Central in proposed Art. 590-septies c.p.
Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content.

Share and Cite

MDPI and ACS Style

La Micela, S.; Stevanin, G.; Pancheri, A.; Faes, C.; Bonetti, A.; Atti, S.; Tocco Tussardi, I.; Tardivo, S. From Criminal Liability to Patient Safety: The Possible Impact of the Italian 2025 Reform Proposal on Senior Healthcare Leadership and Clinical Risk Management. Healthcare 2026, 14, 1494. https://doi.org/10.3390/healthcare14111494

AMA Style

La Micela S, Stevanin G, Pancheri A, Faes C, Bonetti A, Atti S, Tocco Tussardi I, Tardivo S. From Criminal Liability to Patient Safety: The Possible Impact of the Italian 2025 Reform Proposal on Senior Healthcare Leadership and Clinical Risk Management. Healthcare. 2026; 14(11):1494. https://doi.org/10.3390/healthcare14111494

Chicago/Turabian Style

La Micela, Sandro, Gloria Stevanin, Anna Pancheri, Camilla Faes, Annamaria Bonetti, Silvia Atti, Ilaria Tocco Tussardi, and Stefano Tardivo. 2026. "From Criminal Liability to Patient Safety: The Possible Impact of the Italian 2025 Reform Proposal on Senior Healthcare Leadership and Clinical Risk Management" Healthcare 14, no. 11: 1494. https://doi.org/10.3390/healthcare14111494

APA Style

La Micela, S., Stevanin, G., Pancheri, A., Faes, C., Bonetti, A., Atti, S., Tocco Tussardi, I., & Tardivo, S. (2026). From Criminal Liability to Patient Safety: The Possible Impact of the Italian 2025 Reform Proposal on Senior Healthcare Leadership and Clinical Risk Management. Healthcare, 14(11), 1494. https://doi.org/10.3390/healthcare14111494

Note that from the first issue of 2016, this journal uses article numbers instead of page numbers. See further details here.

Article Metrics

Back to TopTop