Proposed EU cyber security law would firm up breach notification rules

Large Internet companies would be required to notify a national agency about serious incidents

New rules on cyber security across the European Union were presented on Thursday after weeks of speculation and leaked drafts.

The main part of the European Commission's Cyber Security Strategy is a proposed Directive on Network and Information Security. If approved by the European Parliament and member states, this would become E.U. law.

Previous voluntary efforts have fallen short, "leaving many gaps in our overall cybersecurity" according to a Commission document. Currently only telecom companies are required to report significant security incidents. The new Directive would extend that to major Internet companies such as large cloud providers, social networks, e-commerce platforms and search engines, the banking sector and critical infrastructure services including energy, transport and health as well as public administrations.

All these organizations would have to report any security breach that has "a significant impact on the security of core services" to a national authority. This authority "may require that the public be informed", but a public announcement will not be mandatory.

"At the end of the day openness and transparency about your experience is going to result in a better environment for all," said Digital Agenda Commissioner Neelie Kroes.

She hit out at business managers who deny cyber attacks are happening because they are worried about reputation. Secrecy is not the way forward, she said. Statistics show that in 2012, 93 percent of large corporations experienced a cyber attack. "It is near-by normal," said the Commissioner, so there is no reason for secrecy.

Follow Jennifer on Twitter at @BrusselsGeek or email tips and comments to jennifer_baker@idg.com.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection

Tags business issuestelecommunicationsecuritylegalinternet

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Jennifer Baker

IDG News Service
Show Comments

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

David Coyle

Brother PocketJet PJ-773 A4 Portable Thermal Printer

I rate the printer as a 5 out of 5 stars as it has been able to fit seamlessly into my busy and mobile lifestyle.

Kurt Hegetschweiler

Brother PocketJet PJ-773 A4 Portable Thermal Printer

It’s perfect for mobile workers. Just take it out — it’s small enough to sit anywhere — turn it on, load a sheet of paper, and start printing.

Featured Content

Product Launch Showcase

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?