All the latest UK technology news, reviews and analysis

EC lays out plans for compulsory data breach notification system

25 Jan 2013
Digital agenda commissioner Neelie Kroes

Vice president of the European Commission (EC) Neelie Kroes has pledged to introduce new measures forcing businesses to report significant security breaches to national authorities.

Kroes said she would instigate the new laws during a speech at the World Economic Forum (WEF), claiming the cyber threat facing Europe is too big for individual states and companies to take on alone.

"After a series of consultations, I have become convinced that the matter of cyber security is too important to be left to the goodwill of companies. The proposal requires the member states to be appropriately equipped," said Kroes.

Under Kroes' proposals, member states could then cooperate at a national level.

"The Commission will also propose to extend the obligations significant incidents to national authorities, to new sectors which are vital for our economy and society - energy, transport, banking, healthcare, key Internet companies," she added.

Kroes originally revealed the EC was considering forcing private sector firms hit by security attacks to report incidents during a speech at the Information Security Forum Conference in Chicago in November 2012.

The details of how the EC will force companies to share information regarding significant cyber incidents remain unknown.

Despite the lack of solid information, the proposed shift has been decried by numerous security experts.

In November representatives from Trend Micro, Spiderlabs and F-Secure told V3 that while well intentioned, there is no realistic way to implement such laws.

Kroes cited the heavy financial impact cyber attacks to hitting the region have had as evidence the new laws are needed.

"The World Economic Forum affirmed that in the next 10 years there is a 10 percent likelihood of a major critical information infrastructure breakdown with possible economic damages of over $250bn. Incidents and attacks are on the rise," said Kroes.

The EC will attempt to increase information sharing between EU states over cyber attacks, with Kroes proposing the creation new Network and Information Security (NIS) programme.

The UK government has already begun mounting similar cyber defence reforms.

Most recently the GCHQ announced plans to implement several new cyber defence programmes, these included the creation of a new cyber reserves force and Cyber Incident Response initiative.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Alastair Stevenson

Alastair has worked as a reporter covering security and mobile issues at V3 since March 2012. Before entering the field of journalism Alastair had worked in numerous industries as both a freelance copy writer and artist.

View Alastair's Google+ profile

More on Security
What do you think?
blog comments powered by Disqus

Tech gifts for Christmas 2014

Is a new tablet on your wish list this festive season, or have they become yesterday’s fad?

Popular Threads

Powered by Disqus
iPhone 6 is available in silver gold and space grey

iPhone 6 video review

The best iOS handset to date

Updating your subscription status Loading

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging


Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

.Net Developer

.NET (ASP .NET/MVC) developer contract Southampton 12...

Litigation Support Analyst

MAIN FOCUS: The position of Litigation Support Analyst...

Graduate Systems Developer

Required Skills and Qualifications Experienced in...

Sales Manager

Sales Manager- MFD Sales - London £40,000 - £60,000...
To send to more than one email address, simply separate each address with a comma.