Wednesday

26th Sep 2018

Focus

EU to force firms to report major cyber attacks

  • It is the first time that EU-wide rules on cyber security are to be agreed (Photo: europarl.europa.eu)

Negotiators from the European Parliament and national governments have reached an agreement on new cyber-security rules, shortly before midnight on Monday (7 December).

Companies which fulfil certain essential societal functions will have to make sure that they can resist cyber attacks, and report digital security breaches to national authorities.

Read and decide

Join EUobserver today

Support quality EU news

Get instant access to all articles — and 18 year's of archives. 30 days free trial.

... or join as a group

It is the first time that EU-wide rules on cyber security are agreed.

The new EU directive will lay down the criteria to determine if a company qualifies as an “operator of essential service”, but member states will be responsible for identifying these key companies, the European Parliament said in a press release.

The sectors where such essential services will need to be guaranteed are: energy, transport, banking, financial market, health, and water supply.

In its press release, the EP also specified three American internet companies as likely to be falling under the new rules.

“In addition, some internet services providers, such as online marketplaces (e.g. eBay, Amazon), search engines (e.g. Google) and clouds, will also have to ensure the safety of their infrastructure and to report on major incidents,” the press release said.

The new directive will also put a “strategic cooperation group” in place where member states should “exchange information and best practices, draw up guidelines and assist member states in cyber security capacity building”.

A complete assessment of the deal, which was clinched behind closed doors in a so-called trilogue process, is not yet possible until the consolidated text of the compromise is published. This is expected to take a few days.

'Milestone'

But the lead negotiator on behalf of the members of the European Parliament (MEPs) already expressed satisfaction with the deal.

“Today, a milestone has been achieved: we have agreed on first ever EU-wide cyber security rules, which the parliament has advocated for years”, centre-right German MEP Andreas Schwab said.

The European Commission, which proposed the cyber security rules in February 2013, mediated the talks.

Digital affairs commissioner Guenther Oettinger said Tuesday (8 December) the new rules are “a major step in raising the level of cyber security in Europe”.

In a speech last month, Oettinger already signalled the importance of the first-ever pan-European cyber security rules.

“We are opening a European legal book”, he said at an annual event of the European Union Agency for Network and Information Security (Enisa) in Brussels.

The EU agency “will play an even more prominent role”, Oettinger had noted.

In an interview with EUobserver, Enisa's executive director Udo Helmbrecht said he expects a positive effect of one of the directive's main features, the obligation for companies that provide essential public services to report major incidents like a cyber attack.

“Putting obligation of reporting incidents will hopefully create a mechanism that people say: 'oh if I have to report something, then I also have to do something for prevention' and by this increasing IT security”, said Helmbrecht.

The deal still needs approval from the full house of the EP and from national governments.

EU to beef up cybersecurity agency

The Commission's president proposed to set up a European Cybersecurity Agency. The EU already has an agency for Network and Information Security.

Hohe Cyber-Bedrohung für Frankreichs Wahlen

Frankreichs Präsident Francois Hollande kündigt an, alle notwendigen Massnahmen zu treffen, um Cyberattacken vor den Präsidentschaftswahlen im April und Mai zu verhindern. Die politischen Parteien sind jedoch weiterhin anfällig.

News in Brief

  1. No UK election before Brexit, says May
  2. Former French PM wants to be mayor of Barcelona
  3. Merkel's wingman in surprise defeat in internal party vote
  4. Orban sends thank-you letters to supportive MEPs
  5. UN chief: World suffering from 'trust deficit disorder'
  6. Stalemate in Sweden as parliament ousts prime minister
  7. Migrant rescue ship heading to French port
  8. EU angry at British tabloids on Brexit

Are EU data watchdogs staffed for GDPR?

The success of the new general data protection regulation (GDPR) will depend on whether data protection authorities enforce the new rules - which, in turn, will be at least partly determined by how many people they employ.

Eight countries to miss EU data protection deadline

The EU starts enforcing its general data protection regulation on 25 May - but Belgium, Bulgaria, Cyprus, Czech Republic, Greece, Hungary, Lithuania and Slovenia won't be ready. The delay will cause legal uncertainty.

Stakeholders' Highlights

  1. NORDIC COUNCIL OF MINISTERSThe vital bioeconomy. New issue of “Sustainable Growth the Nordic Way” out now
  2. NORDIC COUNCIL OF MINISTERSThe Nordic gender effect goes international
  3. NORDIC COUNCIL OF MINISTERSPaula Lehtomaki from Finland elected as the Council's first female Secretary General
  4. NORDIC COUNCIL OF MINISTERSNordic design sets the stage at COP24, running a competition for sustainable chairs.
  5. Counter BalanceIn Kenya, a motorway funded by the European Investment Bank runs over roadside dwellers
  6. ACCACompany Law Package: Making the Best of Digital and Cross Border Mobility,
  7. IPHRCivil Society Worried About Shortcomings in EU-Kyrgyzstan Human Rights Dialogue
  8. UNESDAThe European Soft Drinks Industry Supports over 1.7 Million Jobs
  9. Mission of China to the EUJointly Building Belt and Road Initiative Leads to a Better Future for All
  10. IPHRCivil society asks PACE to appoint Rapporteur to probe issue of political prisoners in Azerbaijan
  11. ACCASocial Mobility – How Can We Increase Opportunities Through Training and Education?
  12. Nordic Council of MinistersEnergy Solutions for a Greener Tomorrow

Latest News

  1. World upside down as EU and Russia unite against US
  2. EU court delivers transparency blow on MEP expenses
  3. Russian with Malta passport in money-laundering probe
  4. Cyprus: Russia's EU weak link?
  5. Missing signature gaffe for Azerbaijan gas pipeline
  6. Every major city in Europe is getting warmer
  7. No chance of meeting EU renewable goals if infrastructure neglected
  8. Brexit and MEPs expenses in the spotlight This WEEK

Stakeholders' Highlights

  1. UNICEFWhat Kind of Europe Do Children Want? Unicef & Eurochild Launch Survey on the Europe Kids Want
  2. Nordic Council of MinistersNordic Countries Take a Stand for Climate-Smart Energy Solutions
  3. Mission of China to the EUChina: Work Together for a Better Globalisation
  4. Nordic Council of MinistersNordics Could Be First Carbon-Negative Region in World
  5. European Federation of Allergy and AirwaysLife Is Possible for Patients with Severe Asthma
  6. PKEE - Polish Energy AssociationCommon-Sense Approach Needed for EU Energy Reform
  7. Nordic Council of MinistersNordic Region to Lead in Developing and Rolling Out 5G Network
  8. Mission of China to the EUChina-EU Economic and Trade Relations Enjoy a Bright Future
  9. ACCAEmpowering Businesses to Engage with Sustainable Finance and the SDGs
  10. Nordic Council of MinistersCooperation in Nordic Electricity Market Considered World Class Model
  11. FIFAGreen Stadiums at the 2018 Fifa World Cup
  12. Mission of China to the EUChina and EU Work Together to Promote Sustainable Development

Join EUobserver

Support quality EU news

Join us