New EU Rules Give ISPs 24 Hours To Report Data Breaches

Law360, New York (June 24, 2013, 9:17 PM EDT) -- The European Commission on Monday issued new rules that tighten existing data breach reporting requirements for telecom operators and Internet service providers by requiring them to notify regulators of security lapses within 24 hours.

Since the implementation of the bloc's revised e-privacy directive in 2011, telecoms networks and ISPs have been operating under a general obligation to inform national authorities and subscribers about breaches of personal data.

But the European Commission said Monday that a public consultation that it recently conducted indicated “widespread support” for extra...
To view the full article, register now.