CarderPlanet
Professional
- Messages
- 2,549
- Reaction score
- 730
- Points
- 113
Digital Footprint at risk: how amendments to the law can change the rules of the game.
The Association of Big Data (ABD), which includes such large companies as Yandex, VK, Rostelecom, MegaFon and others, drew attention to the potential risks associated with recently introduced amendments to a number of federal laws in the State Duma ("On the FSB", "On State protection of judges...", "About the police" , etc.) . They offer specific mechanisms for working with personal information of certain groups of people. Among other things, law enforcement agencies will be able to delete and replace records associated with such individuals, including remote access to databases.
The ability to modify information and "uncontrolled access of defense and law enforcement agencies" to personal data databases can disrupt their operation and integrity, as well as create risks of transferring information to third parties, according to the review of the ABD, which was reviewed by the Kommersant publication.
This, in turn, can lead to risks of administrative and criminal prosecution of persons responsible for databases, due to inconsistencies with other laws, especially for financial organizations and critical information infrastructure entities (CII). ABD also criticizes the requirement to notify the authorities about the appearance in the databases of "information about the departmental affiliation" of people. The association clarifies that it is not clear what is included in this information.
ABD emphasizes that in general it does not object to the concept of the draft law and recognizes "the importance of achieving the goals of the projected regulation," as stated in the review. However, the association asks either to exclude the provisions on remote access of law enforcement agencies to databases, or to allow this only for state and municipal information systems.
Withdrawal or modification of data should be carried out not directly, but through sending official requests, "including through dedicated employees of personal data operators who have access to state secrets."
The ABD confirmed the preparation of the review, adding that on August 31 they sent proposals to the FSB, the government apparatus and the State Duma Committee on Information Policy. These authorities did not respond to Kommersant's requests. The State Duma Council on September 18 included the bill in the program for November.
The Association of Big Data (ABD), which includes such large companies as Yandex, VK, Rostelecom, MegaFon and others, drew attention to the potential risks associated with recently introduced amendments to a number of federal laws in the State Duma ("On the FSB", "On State protection of judges...", "About the police" , etc.) . They offer specific mechanisms for working with personal information of certain groups of people. Among other things, law enforcement agencies will be able to delete and replace records associated with such individuals, including remote access to databases.
The ability to modify information and "uncontrolled access of defense and law enforcement agencies" to personal data databases can disrupt their operation and integrity, as well as create risks of transferring information to third parties, according to the review of the ABD, which was reviewed by the Kommersant publication.
This, in turn, can lead to risks of administrative and criminal prosecution of persons responsible for databases, due to inconsistencies with other laws, especially for financial organizations and critical information infrastructure entities (CII). ABD also criticizes the requirement to notify the authorities about the appearance in the databases of "information about the departmental affiliation" of people. The association clarifies that it is not clear what is included in this information.
ABD emphasizes that in general it does not object to the concept of the draft law and recognizes "the importance of achieving the goals of the projected regulation," as stated in the review. However, the association asks either to exclude the provisions on remote access of law enforcement agencies to databases, or to allow this only for state and municipal information systems.
Withdrawal or modification of data should be carried out not directly, but through sending official requests, "including through dedicated employees of personal data operators who have access to state secrets."
The ABD confirmed the preparation of the review, adding that on August 31 they sent proposals to the FSB, the government apparatus and the State Duma Committee on Information Policy. These authorities did not respond to Kommersant's requests. The State Duma Council on September 18 included the bill in the program for November.
