Articles

The Belgian Privacy Commission publishes a recommendation on data breaches

The Belgian Privacy Commission publishes a recommendation on data breaches

The Belgian Privacy Commission publishes a recommendation on data breaches

25.02.2013 BE law

As a consequence of certain recent data compromise cases, the Belgian Privacy Commission on 21 January 2013, has published a recommendation (01/2013) on security measures to be taken to avoid data breaches (the “Recommendation”).

The main points of the Recommendation can be summarised as follows:

  1. The Commission proposes some general measures to be taken, such as for example the implementation of at least three DMZ-zones to separate the local network from devices connected to the Internet;
  2. The Commission refers to the guidelines on information security of personal data which were published in June 2012 for a specific overview of measures;
  3. The Commission insist that data breaches be notified within 48 hours and that a public information campaign should be undertaken within 24 to 48 hours after the notification to the Privacy Commission;
  4. Based on its finding that Article 16, §4 of the Belgian Data Protection Act (the obligation to take all necessary technical and organisational measures) is not sufficiently complied with, the Commission announces that it will address the parliament to ask for the necessary competences to make its recommendations on the necessary security measures enforceable. Pending this request, the Commission shall use all its powers to ensure that data controllers breaching their obligations under Article 16, §4 of the Data Protection Act, are held legally liable for this. To this end, it will notify the public prosecutor of any such violation of the Data Protection Act of which it gains knowledge.

The full recommendation can be found on:

http://www.privacycommission.be/fr/recommandation-prevention-fuites-donnees

Team

Related news

24.05.2018 EU law
Countdown 1 day until GDPR : Will administrative fines for violation of the GDPR increase compared to the fines imposed by current national regimes?

Short Reads - Only 1 more day to go before the GDPR becomes fully effective. Preparing your company for the application of this new regulation requires a correct understanding of its principles. Each week, we highlight one particular misconception regarding the interpretation of the GDPR.

Read more

11.05.2018 NL law
Privacy in een nieuw jasje: een vergelijking van beschermingsniveau tussen de Wbp en de AVG

Articles - De AVG zal op 25 mei 2018 inwerking treden. Dit zal de privacyregelgevingaanscherpen. Door een territoriale uitbreiding van het toepassingsbereik van de regelgeving, meer focus te leggen op (verplichte) controle van naleving van de verordening voorafgaand aan een verwerking van persoonsgegevens, in combinatie met een uitgebreider arsenaal aan handhavingsinstrumenten voor de Autoriteit Persoonsgegevens, zal de bescherming van privacy voor burgers in de EU toenemen.

Read more

Our website uses cookies: third party analytics cookies to best adapt our website to your needs & cookies to enable social media functionalities. For more information on the use of cookies, please check our Privacy and Cookie Policy. Please note that you can change your cookie opt-ins at any time via your browser settings.

Privacy – en cookieverklaring