Johnny Kauffman reports: A bill filed in the Georgia Legislature by Sen. John Albers (R–Roswell) would mandate companies and state agencies provide details to the attorney general and the governor’s office and give authority to the attorney general’s office to conduct an investigation. The Republican’s bill (SB 276) is called the “Georgia Personal Data Security…
Category: Legislation
European Parliament Committee Approves EU Cybersecurity Rules and Publishes Agreed Text
Mark Young and Vera Coughlan write: Formal adoption of the EU Network and Information Security (NIS) Directive is a step closer following a vote on January 14 by the European Parliament’s internal market and consumer protection (IMCO) committee. As we reported in December, the European institutions reached an informal political agreement on the NIS Directive — dubbed…
Europe Approves Tough New Data Protection and Breach Notification Rules
Mark Scott reports that new EU data protection directives were (finally) approved yesterday, and will go into effect in 2017. Some of the directives will have significant impact for American businesses, regardless of whether they maintain headquarters or offices in the EU. Scott summarizes some of the new directives, and there are a few that…
KY: Child identity theft legislation pre-filed in House
Brad Bowman reports that House Majority Caucus Chair Rep. Sannie Overly, D-Paris, pre-filed a bill that would protect children from identity theft by allowing parents or guardians to request a security freeze in cases of card fraud for children under 18 and an incapacitated person. Bowman reports: Currently, there are 22 states that allow parents,…
Internet firms to be subject to new cybersecurity rules in EU
Julia Fioretti reports: Internet firms such as Cisco, Google and Amazon will be subject to a new EU cybersecurity law forcing them to adopt tough security measures and possibly report serious breaches to national authorities, according to a document seen by Reuters. The so-called Network and Information Security Directive has been stuck in talks between…
New German cyber security law to protect critical infrastructure
Neil Ford explains: Germany has passed a new IT security law requiring critical infrastructure institutions to implement minimum information security practices or face fines of up to €100.000. The new law, which was drafted last August, was passed by the Bundestag last month and has now been passed by Germany’s upper house, the Bundesrat. It gives…