The European Data Protection Supervisor (“EDPS”) Giovanni Buttarelli issued a guidance document on data security and risk management for the E.U. institutions (such as the European Parliament, the European Council, and the Council of the European Union) on March 21, 2016. Although aimed at E.U. institutions, the document may nonetheless become a source of guidance […]
EU Institutions
EU Institutions Reach Agreement on First Pan-European Legislation on Cybersecurity
On December 7, 2015, after more than two years of legislative consideration, the European Parliament and the European Council reached a political agreement concerning the Directive on Network and Information Security (“NIS Directive”). Under the NIS Directive, operators of essential services will be required to take appropriate security measures and report cybersecurity incidents. The amended draft NIS […]