[computeractive] The European Commission (EC) is considering legislation that will force companies to inform their customers of data breaches.
The data-protection proposals, published recently in the EC’s Digital Agenda, are seen as a means of building consumer trust.
In a statement the EC said: “Europeans will not embrace technology they do not trust – they need to feel confident and safe online.
“A better coordinated European response to cyber-attacks and reinforced rules on personal data protection are part of the solution. Actions could also potentially oblige website operators to inform their users about security breaches affecting their personal data."
Currently, there are no data-breach notification laws within the EU. However, telecommunications companies will soon be required to inform customers if their personal data has been compromised under new telecommunications legislation passed last year.
The EC said in the Digital Agenda that it would explore the possibility of extending this notification requirement to other companies.
In the UK there has been resistance to introducing any such notification legislation. Although the majority of states within the US have enacted disclosure laws, in the past, the Information Commissioner’s Office (ICO) has rejected the idea.
Read more: http://www.computeractive.co.uk/computeractive/news/2263473/european-union-plans-stronger#ixzz0ofjUN2KA
European Union plans stronger data protection laws