It’s not just China and Russia that are trying to figure out how to deal with big, foreign web companies and Internet service providers doing business in their countries.
An upcoming cyber security law brought on by the European Union could see tech giants like Google, Cisco, and Amazon having to comply with strict security requirements, including having to report data breaches to governments that are part of the EU.
Under the terms of the Network and Information Security Directive – which was originally proposed by the executive body of the EU in 2013 to counter security threats – cloud computing providers, search companies, and even social networks could be held under the same security requirements as companies operating in industries that the EU deems critical to protect. These could include the energy, transportation, and finance industries.
Apparently, EU members debated whether to lump web companies with companies operating in critical sectors, and ultimately decided to do so with the difference being that web companies would face “less onerous security obligations,” although it’s unclear what those obligations are.
Reuters reports that under the terms of the law, if a cloud computing provider or other Internet service provider does business with a company operating in a critical sector, the web companies would essentially be subject to the same security rules as their clients.
“We’re pleased to see digital service platforms subject to a different regime but we’re disappointed at the lack of recognition that it is the use of cloud that determines the security risk not the service itself,” Cisco senior manager of government affairs Chris Gow told Reuters.
The Reuters report notes that the details of the law are still subject to change, and countries in the EU will meet in September to discuss before the “drafting of a full legal text will start.”
The EU directive comes at a time when countries like Russia and China have created their own cyber security laws that could potentially impact the way foreign web companies conduct business outside of their home turf.
An upcoming Russia security law basically calls for foreign companies to set up data centers in Russia if they want to do business in Russia in which Russian data is being used. Google reportedly moved some of its servers into the data centers of Russian telecom Rostelecom to comply with the law.
China’s draft cybersecurity law also echoes Russia’s security law with foreign companies having to store Chinese data within China, although special exemptions could mean that it’s a case-by-case situation depending on the company involved.
Web companies and Internet service providers operating in China will also face stiffer security requirements, such as aiding the Chinese government with criminal or national security investigations. They may even have to let authorities annually audit them to determine if there are security risks the Chinese government would like to know about.
These materials are not intended and should not be used as legal advice or other recommendation. If you need a legal opinion on a specific issue or factual situation, please contact a lawyer. Anyone using these materials should not rely on them as a substitute for legal advice.
Remember, no problem has a quick fix solution. Thus, always ensure to consult highly knowledgeable group of professionals whom would provide you with a collective advice, never individual advice. This group advice and approach is unique with CWIIL Group and is based on the overall Management Philosophy of all CWIIL Group Companies.
Consulting CWIIL Group of Companies, for any / all legal matters, ensures advice based on highest level of knowledge which are given to you by a team of select research-oriented experts whom each will do their own assessment of your matter, and also assess it together, thus ensuring that in case a mistake has been made by one, it will be noticed and corrected even before it is being passed on to you. Receiving incorrect and un-knowledgeable business advise can be disastrous and thus should be avoided.
CWIIL Group of Companies is a global group of multi-specialized units with diversified interests and activities, wherein each company is a separate legal entity registered under prevailing laws in different parts of the world. CWIIL Group of Companies Products, Services, Project and Solutions are in a multitude of Verticals including, but not limited to, Infrastructure, Power, Oil & Gas, Legal, Media, Technology, ITES, HR, Shipping, Aviation, Real Estate, Hospitals, Health and Medicine, Education, Funding & Investment, Business and Legal Consultancy, and Public Private Partnerships, and other CWIIL Group Units, worldwide, to name a few.
For Further Queries Feel Free to Contact :
CWIIL Group Global Regional Headquarters Denmark,
Address : No. 1, Klokkebjergevej, DK6900 Skjern, Denmark
Voice : +45.5148.3608
Fax : +45.7014.1498
Email : corpcomm@cwiilgroup.eu
Web : www.cwiilgroup.eu
Connect : LinkedIn – Twitter – Facebook – Quora
Office Hours :
Monday to Friday : 10.00 – 17.00 CET.
Saturday : 10.00 – 14.00 CET.
Sunday : Closed.
The Corporate Communications Team would require minimum a fortnight for Reviewing & Responding to Queries, which please note.
CWIIL Group Global Regional Headquarters Denmark 