Computer & Communication Industry Association

New EU Cybersecurity Rules Should Promote Security Mitigation, Avoid Compliance Red Tape

Brussels, BELGIUM — The European Commission published today a legislative proposal to update the 2016 Network and Information Security Directive. 

The proposal aims to reduce regulatory inconsistencies across the EU’s internal market and it encourages security information sharing to help companies effectively address future cybersecurity risks. But the proposal also suggests that cloud computing providers, data centres, electronic communications services, and Content Delivery Network providers be supervised in the same way that more high risk electricity and gas suppliers are. The proposal also sets out a minimum threshold for sanctions and fines of up to 2 percent of annual turnover.

Today’s proposal is part of a broader EU Strategy to address cybersecurity risks. The package also includes a review of the Critical Infrastructure Protection directive, plans to increase actionable information sharing among Member States and stakeholders (“Cyber Shield”), and the creation of a Joint Cyber Unit. The plans also propose made-in-Europe solutions that would exclude non-EU service providers from supporting the EU’s efforts on keeping critical communications and data assets secure. The EU is finally looking to support the emergence of a public European DNS resolver service, and the introduction of a possible duty of care for IoT hardware manufacturers and service providers that risk departing from globally accepted norms. 

On the Network and Information Security Directive proposal the following can be attributed to Alexandre Roure, CCIA Public Policy Senior Manager:

“It is positive that the proposal seeks to harmonise national rules and encourage information sharing for companies to better manage security risks across Europe. However, we hope the final rules will better support companies’ cybersecurity preparedness while avoiding unnecessary compliance burdens.”

News

Matt Mandel Joins CCIA as Federal Affairs VP

Washington -- The Computer & Communications Industry Association is pleased to welcome Matt Mandel as Vice President for Federal Affairs. Mandel served as Vice President of Government Affairs at W...
reading-tablet
  • Press Releases
  • Federal Affairs
News

Supreme Court Opts not to Intervene and Block a Texas App Store Law that Likely Violates First Amendment

Washington – In response to an emergency request, the Supreme Court has decided not to intervene in an Appeals Court ruling allowing Texas to enforce its App Store law. The law requires people to sh...
reading-tablet
  • Press Releases
  • Privacy
News

CCIA Files Joint Brief on Internet Content and Federal Legal Protections

The Computer & Communications Industry Association, NetChoice, and the Electronic Frontier Foundation filed a joint amicus brief in Bogard v. Alphabet, asking an appeals court to affirm a lower co...
reading-tablet
  • Press Releases
  • Online Safety
News

CCIA Raises Privacy and Liability Concerns with California Wearable Devices Bill, SB 1130

Washington – The Computer & Communications Industry Association is testifying today before the California Assembly Committee on Privacy and Consumer Protection in opposition to SB 1130, warning ...
reading-tablet
  • Press Releases
  • Privacy