PT: ANACOM adopts security breach notification procedures

Telecompaper reports:

Portuguese regulator Anacom has approved the final decision concerning the circumstances, format and procedures applicable to the reporting requirements of a security breach or loss of network integrity. This decision also includes conditions in which Anacom considers that there is a public interest in disclosing this information to the public, as well as its contents, means and timing of disclosure. The companies subject to this decision will have until 12 June 2014 to implement the necessary measures.

Here’s Google’s translation of what I found on ANACOM’s site:

The ANACOM approved, by resolution of December 12, 2013, the final decision concerning the circumstances, format and procedures applicable to communication requirements of security breaches or loss of integrity with significant impact on the functioning of the public communications networks and electronic communications services accessible to the public.

This decision also includes the conditions under which the ANACOM considers there is a public interest in disclosure of such information to the public, as well as its contents, means and timing of disclosure.

The addressees of this decision shall, until June 12, 2014, implement the necessary measures to comply therewith.

It was also approved on the same date, the preliminary hearing and report the query that was subject of design corresponding decision (approved by resolution of December 22, 2011), whose publication is now, along with the contributions received.

See:
Security breaches and loss of integrity in electronic communications networks and services

Consultation on the notification of security breaches and loss of integrity in electronic communications networks and services and their public disclosure

Related: Resolution of 12.12.2013 (pdf, Portuguese)

About the author: Dissent

Comments are closed.