14 DAY TRIAL // The Dutch government has decided that it’s not going to wait around until the European Parliament updates its ePrivacy directive on data breach disclosures.
Instead, the State Secretary for Security and Justice has proposed its own legislation aimed at tightening data breach disclosure rules.
According to Telecompaper, private and public organizations that suffer data breaches as a result of which personal data becomes compromised will have to notify both the data protection authority (CBP) and the impacted individuals.
So far, the consumer and competition regulator ACM has been responsible for oversight of the disclosure requirements.
However, if the new legislation passes, the CBP will become responsible and it will be able to issue monetary penalties of up to €450,000 ($585,000) in case a company doesn’t play by the rules.