Marketplaces and online stores have asked to apply revolving fines only for repeat leaks

Short description

Summarize this content to 100 words The Association of Internet Trade Companies (AKIT), which includes Ozon, WildBerries, “Yandex.Market”, Lamoda, “Citilink” and other marketplaces and online stores, asked to postpone the entry into force of the law on recoverable fines for leaks of personal data. In its letter to the Ministry of Finance, the association asked to adjust the wording in the draft law, Vedomosti newspaper writes.In particular, AKIT asks to apply fines ranging from 0.1% to 3% of the annual turnover only to those operators who have repeatedly leaked the data of more than 1 million users. At the same time, the association proposes not to impose fines, if additional information is required in addition to the leaked data to identify the user, and the leak itself did not cause a violation of the user’s rights.In addition, the association proposes to release the operators of personal data from the obligation to notify users whose data ended up on the network about the leak. Business representatives believe that operators should notify only Roskomnadzor.AKIT believes that the date of entry into force of the law should be postponed to September 2024. Currently, it should enter into force 30 days after its official publication. Representatives of the association claim that the Ministry of Digital, FSB and FSTEC need additional time to develop and agree on a recommended list of additional measures to ensure the security of personal data during their processing.Oleksandr Khinshtein, head of the State Duma Committee on Information Technologies, said that the bill has not yet been introduced, and the government is expected to withdraw it.

Marketplaces and online stores have asked to apply revolving fines only for repeat leaks

The Association of Internet Trade Companies (AKIT), which includes Ozon, WildBerries, “Yandex.Market”, Lamoda, “Citilink” and other marketplaces and online stores, asked to postpone the entry into force of the law on recoverable fines for leaks of personal data. In its letter to the Ministry of Finance, the association asked to adjust the wording in the draft law, Vedomosti newspaper writes.

In particular, AKIT asks to apply fines ranging from 0.1% to 3% of the annual turnover only to those operators who have repeatedly leaked the data of more than 1 million users. At the same time, the association proposes not to impose fines, if additional information is required in addition to the leaked data to identify the user, and the leak itself did not cause a violation of the user’s rights.

In addition, the association proposes to release the operators of personal data from the obligation to notify users whose data ended up on the network about the leak. Business representatives believe that operators should notify only Roskomnadzor.

AKIT believes that the date of entry into force of the law should be postponed to September 2024. Currently, it should enter into force 30 days after its official publication. Representatives of the association claim that the Ministry of Digital, FSB and FSTEC need additional time to develop and agree on a recommended list of additional measures to ensure the security of personal data during their processing.

Oleksandr Khinshtein, head of the State Duma Committee on Information Technologies, said that the bill has not yet been introduced, and the government is expected to withdraw it.

Related posts