European Parliament Adopts Position on Data Breach Notification Requirement for Telecoms and ISPs

[security curmudgeon <jericho () attrition org>]

http://www.huntonprivacyblog.com/2009/05/articles/european-union-1/european-parliament-adopts-position-on-data-breach-notification-requirement-for-telecoms-and-isps/

European Parliament Adopts Position on Data Breach Notification Requirement for Telecoms and ISPs

Posted on May 12, 2009 by Hunton & Williams LLP

On May 6, 2009, the proposed amendments to the e-Privacy Directive 
received a second reading in the European Parliament.  In addition to 
other measures, it will include a definition of personal data breach and 
will introduce a data breach notification requirement.

The review of the e-Privacy Directive forms part of a wider review of 
telecoms legislation.  The objective of that review is to improve network 
security and integrity, to increase protection for user personal data and 
to improve measures to prevent spam and cyber attacks.  The scope of the 
amended Directive will include the processing of personal data in 
connection with the provision of publicly available electronic 
communications services in public communications networks within the 
European Community, including public communications networks supporting 
data collection and identification devices.

For the first time in EU law the amendments introduce a definition of 
personal data breach and a data breach notification requirement.

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php