FCC Approves Major Updates to Data Breach Notification Rules
p
Breach Notification
Governance Risk Management
Privacy
ppThe US Federal Communications Commission voted Wednesday along party lines to update 16yearold privacy protection rules and expand breach notification requirements as part of an effort to provide law enforcement and the public with realtime information about harmful data breachesppSee Also JavaScript and Blockchain Technologies You Cant IgnoreppThe new rule expands the scope of the FCCs breach notification requirements to cover all personal identifiable information that carriers and telecommunications relay service providers maintain on their customers Those organizations will be tasked with providing individual perbreach notifications no later than seven business days after reasonable determination of a breach affecting 500 or more customers according to the guidelinesppThe three Democrats on the commission voted for the measure and the two Republicans dissentedppIn approving the updated rules outlined in a report and order the agency said data breaches have only grown in frequency and severity over the past two decadesppThe FCC first circulated a public draft of the revised breach notification rules in November and eliminated certain requirements from its updated rules including notifying customers of breaches in instances so long as the telecom can reasonably determine that no harm to customers is likely to occur Also organizations are no longer required to file annual summaries of breaches affecting fewer than 500 customers in which no harm is likely to occurppThe updated data breach notification rules garnered swift praise from the think tank Public Knowledge which said that the rule will require carriers to treat customer data with the care it deserves and will allow the FCC to punish carriers that fail to take their responsibility to protect customer data seriously or who skimp on precautions to inflate their bottom lineppThe group pointed out that broadband providers are exempt from the new rule a result of the FCCs 2017 revocation during the Trump administration of net neutrality limiting its regulatory power over telecom offerings classified as information services The agency on Oct 19 initiated a notice of proposed rulemaking that would reestablish authority over broadband providersppThe FCC first adopted its breach notification rules in 2007 to protect Americans from fraud through pretexting which is when criminals use social engineering techniques to obtain sensitive information from victims such as passwords Social Security numbers or financial information The FCC attempted to include updated protections for broadband internet access service providers in 2016 but Congress nullified those revisions a year later under a statute that allows lawmakers to overturn agency regulationppManaging Editor GovInfoSecurityppRiotta is a journalist based in Washington DC He earned his masters degree from the Columbia University Graduate School of Journalism where he served as 2021 class president His reporting has appeared in NBC News NextgovFCW Newsweek Magazine The Independent and morepp
ppCovering topics in risk management compliance fraud and information securityppBy submitting this form you agree to our Privacy GDPR StatementppwhitepaperppwhitepaperppwhitepaperppwhitepaperppArtificial Intelligence Machine LearningppEndpoint SecurityppGovernance Risk ManagementppCloud SecurityppCybercrimeppContinue pp
90 minutes Premium OnDemand
ppOverviewppFrom heightened risks to increased regulations senior leaders at all levels are pressured to
improve their organizations risk management capabilities But no one is showing them how
until nowppLearn the fundamentals of developing a risk management program from the man who wrote the book
on the topic Ron Ross computer scientist for the National Institute of Standards and
Technology In an exclusive presentation Ross lead author of NIST Special Publication 80037
the bible of risk assessment and management will share his unique insights on how toppSr Computer Scientist Information Security Researcher
National Institute of Standards and Technology NISTppWas added to your briefcaseppFCC Approves Major Updates to Data Breach Notification RulesppFCC Approves Major Updates to Data Breach Notification Rulespp
Just to prove you are a human please solve the equation
ppSign in now ppNeed help registering
Contact support
ppComplete your profile and stay up to dateppContact Support ppCreate an ISMG account now ppCreate an ISMG account now ppNeed help registering
Contact support
ppSign in now ppNeed help registering
Contact support
ppSign in now ppOur website uses cookies Cookies enable us to provide the best experience possible and help us understand how visitors use our website By browsing bankinfosecuritycom you agree to our use of cookiesp
Breach Notification
Governance Risk Management
Privacy
ppThe US Federal Communications Commission voted Wednesday along party lines to update 16yearold privacy protection rules and expand breach notification requirements as part of an effort to provide law enforcement and the public with realtime information about harmful data breachesppSee Also JavaScript and Blockchain Technologies You Cant IgnoreppThe new rule expands the scope of the FCCs breach notification requirements to cover all personal identifiable information that carriers and telecommunications relay service providers maintain on their customers Those organizations will be tasked with providing individual perbreach notifications no later than seven business days after reasonable determination of a breach affecting 500 or more customers according to the guidelinesppThe three Democrats on the commission voted for the measure and the two Republicans dissentedppIn approving the updated rules outlined in a report and order the agency said data breaches have only grown in frequency and severity over the past two decadesppThe FCC first circulated a public draft of the revised breach notification rules in November and eliminated certain requirements from its updated rules including notifying customers of breaches in instances so long as the telecom can reasonably determine that no harm to customers is likely to occur Also organizations are no longer required to file annual summaries of breaches affecting fewer than 500 customers in which no harm is likely to occurppThe updated data breach notification rules garnered swift praise from the think tank Public Knowledge which said that the rule will require carriers to treat customer data with the care it deserves and will allow the FCC to punish carriers that fail to take their responsibility to protect customer data seriously or who skimp on precautions to inflate their bottom lineppThe group pointed out that broadband providers are exempt from the new rule a result of the FCCs 2017 revocation during the Trump administration of net neutrality limiting its regulatory power over telecom offerings classified as information services The agency on Oct 19 initiated a notice of proposed rulemaking that would reestablish authority over broadband providersppThe FCC first adopted its breach notification rules in 2007 to protect Americans from fraud through pretexting which is when criminals use social engineering techniques to obtain sensitive information from victims such as passwords Social Security numbers or financial information The FCC attempted to include updated protections for broadband internet access service providers in 2016 but Congress nullified those revisions a year later under a statute that allows lawmakers to overturn agency regulationppManaging Editor GovInfoSecurityppRiotta is a journalist based in Washington DC He earned his masters degree from the Columbia University Graduate School of Journalism where he served as 2021 class president His reporting has appeared in NBC News NextgovFCW Newsweek Magazine The Independent and morepp
ppCovering topics in risk management compliance fraud and information securityppBy submitting this form you agree to our Privacy GDPR StatementppwhitepaperppwhitepaperppwhitepaperppwhitepaperppArtificial Intelligence Machine LearningppEndpoint SecurityppGovernance Risk ManagementppCloud SecurityppCybercrimeppContinue pp
90 minutes Premium OnDemand
ppOverviewppFrom heightened risks to increased regulations senior leaders at all levels are pressured to
improve their organizations risk management capabilities But no one is showing them how
until nowppLearn the fundamentals of developing a risk management program from the man who wrote the book
on the topic Ron Ross computer scientist for the National Institute of Standards and
Technology In an exclusive presentation Ross lead author of NIST Special Publication 80037
the bible of risk assessment and management will share his unique insights on how toppSr Computer Scientist Information Security Researcher
National Institute of Standards and Technology NISTppWas added to your briefcaseppFCC Approves Major Updates to Data Breach Notification RulesppFCC Approves Major Updates to Data Breach Notification Rulespp
Just to prove you are a human please solve the equation
ppSign in now ppNeed help registering
Contact support
ppComplete your profile and stay up to dateppContact Support ppCreate an ISMG account now ppCreate an ISMG account now ppNeed help registering
Contact support
ppSign in now ppNeed help registering
Contact support
ppSign in now ppOur website uses cookies Cookies enable us to provide the best experience possible and help us understand how visitors use our website By browsing bankinfosecuritycom you agree to our use of cookiesp