Daily Dashboard

EC May Require Internet Firms To Disclose Breaches

PRIVACY LAW—EU

January 17, 2013

The New York Times reports on a proposal being drafted by EU Commissioner for the Digital Agenda Neelie Kroes that would require firms storing data on the Internet to disclose data breaches to the EU or face sanctions or fines. Telephone, transport and utility companies currently must disclose breaches, but the proposal would apply to “enablers of Internet services, e-commerce platforms, Internet payment gateways, social networks, search engines, cloud computing services, applications stores” and others, according to a copy of the plan seen by the International Herald Tribune. A representative from the Business Software Alliance said, “Harmonization of the notification requirements for security breaches is important and should be addressed,” adding, “More precise guidelines in the directive on the trigger and threshold procedures would make the system more workable.” (Registration may be required to access this story.)
Full Story