All businesses in the UK that store data on customers will soon have to disclose any breaches, as the European Commission looks to widen the scope of recent changes to data protection laws.
Speaking at the British Bankers' Association (BBA) Data Protection and Privacy Conference in London on Monday, European Union justice commissioner Viviane Reding said the move would ensure all businesses took data protection seriously.
"I intend to introduce a mandatory requirement to notify data security breaches – the same as I did for telecoms and internet access when I was telecoms commissioner, but this time for all sectors, including banking and financial services," she said.
"It would create a stronger incentive for business to conduct serious risk assessments to protect personal data and to implement the appropriate security measures protecting the confidentiality, the integrity and the availability of personal data."
Reding explained that the Commission's proposals to change data protection legislation would be revealed in the coming months and that she would meet with UK ministers to discuss the plans.
"We have consulted widely on this major reform and we've taken into account many suggestions and concerns of experts and stakeholders [and] during my visit to London I have the opportunity to discuss our proposals with justice secretary Kenneth Clarke," she added.
Telecoms firms and internet service providers are already subject to mandatory data breach disclosure after changes to the ePrivacy Directive, which came into force on 26 May.
Mobile operator Everything Everywhere recently slammed the law, claiming it will swamp the Information Commissioner's Office (ICO) with unnecessary reports of data breaches.
Mark Zuckerberg mercilessly trolled by Harvard student newspaper after return to university he dropped out of 12 years ago
'Unauthorised user' blamed by Harvard for insulting Mark Zoinkerberg
Android under attack from 'Judy', Google Play Store malware that has infected up to 36.5 million users
Yet more Android malware discovered on the Google Play Store
Airport believes new system will be more reliable than GPS or Google Maps
OnePlus 3T canned to make way for imminent OnePlus 5 with Snapdragon 835, 8GB memory and dual camera
OnePlus 3T to be prematurely retired on 1 June - perhaps indicating plans for an imminent OnePlus 5 launch