Germany passes strict cyber-security law

July 12, 2015

The upper house of the German parliament – Bundesrat – approved IT security law obliges firms and federal agencies to certify for minimum cyber-security standards and obtain Federal Office of Information Security (BSI) clearance. The companies must also notify the Office of suspected cyber-attacks on their systems.

The law will affect institutions listed as “critical infrastructure” such as transportation, health, water utilities, telecommunications providers, as well as finance and insurance firms. It gives companies two years to introduce cyber security measures or face fines of up to €100,000 ($111,000). The new set of rules also obliges telecommunications providers to warn customers when their connection was abused, for example in a botnet attack, and store the traffic data for up to six months for investigative purposes, thus potentially violating privacy rights.

Comments are closed.

Ne-am mutat! Aici puteți accesa în continuare arhiva PPW. Click aici pentru noua versiune a Power&Politics World sau accesați adresa www.powerpolitics.ro/new