Organisations which lose personal data should be forced to disclose the data security breach, the European Union’s privacy watchdog has said. Planned changes to EU privacy law do not go far enough, said the official.
The European Data Protection Supervisor (EDPS) Peter Hustinx has published an opinion urging the European Commission to extend the obligation to tell people when their data security has been compromised beyond current limits and has backed calls for a ‘right to be forgotten’.
The Commission said in November that it would consider adopting a more wide-ranging security breach policy as part of a review of the Data Protection Directive.
Read more on Out-Law.com