Cyber attacks on companies and public institutions regularly dominate the headlines. Phishing, DoS and other internet attacks not only cause enormous economic losses; they undermine the confidence of clients and business partners.
New IT Security Act brings tighter legal requirements
For some time now, the EU has been discussing a cyber security strategy with the aim of making e-commerce safer. Germany is leading the way in this respect and has rolled out an IT Security Act in 2015. Critical infrastructure operators are now required to implement adequate technical and organisational measures in order to safeguard their data.
Internet security is every company’s business
Anyone who uses the internet is affected by internet security, no matter if providing information online or simply opening one’s own IT systems in order to communicate via the web. Technical security standards need to comply with data protection regulations and, if applicable, copyright requirements. This is of particular relevance when working with service providers and drawing up corresponding contracts.
Internet security aspects covered by the CMS Digital Business Group:
- Legal reviews of internet security concepts as well as advising on their implementation
- Advising on data protection and IT security audits
- Privacy due diligence
- Advising in-house data protection officers
- Advising on reporting obligations according to the German IT Security Act