Government consults on EU cyber security proposed Directive

The Department for Business, Innovation & Skills (BIS) has issued a call for evidence on the European Commission’s proposed Directive on Network and Information Security (NIS), which was published on 7 February 2013.

The government is preparing an initial impact assessment on the potential effects of the directive in the UK, and is seeking views on which cyber security standards organisations currently conform with; the type of network or information breaches which are classified as an ‘incident’; and whether breaches are reported to regulators. In addition, evidence is sought on the types of incidents (for example, human error, cyber incident, accidents) which occur and which are reported. The consultation closes on 21 June 2013.

See the call for evidence.

The Privacy Laws & Business 26th Annual International Conference 1-3 July 2013 includes three sessions on data security: a 2nd July session on ‘Preparing for handling cyber attacks on personal data’ by Gail Crawford, Partner at Latham & Watkins, Jennifer C. Archie, Partner at Latham & Watkins, and Seth Berman, Executive Managing Director, Stroz Friedberg. Two more data security sessions follow on 3rd July, including one specifically on the European Commission's proposals in this area.