Tag Archives: ENISA

Guidance released by EU Authorities on How to Ensure IT Security when Working Remotely

By Dan Cooper, Kristof Van Quathem and Anna Oberschelp de Meneses on Posted in COVID-19, Data Privacy, Data Security
In order to combat the proliferation of COVID-1, several EU Member States have strongly recommended or required that employees engage in teleworking, rather than attend work as normal. In this context, the European Union Agency for Cybersecurity (“ENISA”), on March 15, 2020, issued its “top tips for cybersecurity when working remotely”. Some data protection Supervisory … Continue Reading

European Parliament Approves EU Cybersecurity Act

By Mark Young on Posted in Cybersecurity, EU Data Protection, European Union, Internet of Things (IoT)
Following a political agreement at the end of 2018, earlier this week the European Parliament approved a new cybersecurity regulation known as the EU “Cybersecurity Act” This forms part of the EU’s Cyber Package, first announced in September 2017 (which we blogged about here). In addition to reinforcing the mandate of ENISA — now to … Continue Reading

EU Announces Major New Cybersecurity Plans

By Mark Young on Posted in Cybersecurity, European Union
Last week, in his annual State of the European Union Address, the President of the European Commission Jean-Claude Juncker called out cybersecurity as a key priority for the European Union in the year ahead.  In terms of ranking priorities, President Juncker placed tackling cyber threats just one place below the EU leading the fight against … Continue Reading

EU Cyber Security Directive To Enter Into Force In August

By Mark Young on Posted in Cloud Computing, Cybersecurity, Data Security, European Union, Financial Institutions, Financial Privacy, Health Privacy
The EU Network and Information Security (NIS) Directive now looks likely to enter into force in August of this year.  Member States will then have 21 months to implement it into national law before the new security and incident notification obligations will start to apply to the following entities: designated* “operators of essential services” within … Continue Reading

Update on the Cybersecurity Directive – over to Luxembourg?

By Mark Young on Posted in Cybersecurity, Data Breaches, Data Security, European Union
Next week we expect to find out if the Council of the EU will finally agree (“adopt a general approach”) on its version of the proposed General Data Protection Regulation (GDPR).  Progress with a “little brother” of the GDPR – namely the proposed Network and Information Security (NIS) Directive, tagged the Cybersecurity Directive – continues in parallel.  Before … Continue Reading

Governmental Cloud in the EU – New ENISA Report

By Mark Young on Posted in Cloud Computing, Data Security, European Union, Health Privacy, International
Hot on the heels of its report on data breach notifications in the EU, the EU’s cyber security regulator, ENISA, published yesterday a new report on cloud computing in the government.  The report is targeted at senior managers of public bodies who are considering cloud computing platforms and services, and it aims to highlight the … Continue Reading

ENISA report on data breach notifications in the EU

By Mark Young on Posted in Data Breaches, Data Security, European Union, International
The EU’s ‘cyber security’ agency ENISA has issued a report on data breach notifications in the EU.  The report is in response to the 2009 amendments to the ePrivacy Directive requiring telecom and Internet service providers to issue notifications for personal data breaches, which Member States must transpose into national legislation by May 2011.  The … Continue Reading
LexBlog