Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
Security United States

FCC Proposes Stricter Requirements for Reporting Data Breaches (engadget.com) 13

The Federal Communications Commission is the next US regulator hoping to hold companies more accountable for data breaches. From a report: Chairwoman Jessica Rosenworcel has shared a rulemaking proposal that would introduce stricter requirements for data breach reporting. Most notably, the new rules would require notifications for customers affected by "inadvertent" breaches -- companies that leave data exposed would have to be just as communicative as victims of cyberattacks. The requirements would also scrap a mandatory one-week waiting period for notifying customers. Carriers, meanwhile, would have to disclose reportable breaches to the FCC in addition to the FBI and Secret Service. Rosenworcel argued the tougher rules were necessary to account for the "evolving nature" of breaches and the risks they posed to victims. People ought to be protected against larger and more frequent incidents, the FCC chair said -- that is, regulations need to catch up with reality.
This discussion has been archived. No new comments can be posted.

FCC Proposes Stricter Requirements for Reporting Data Breaches

Comments Filter:
  • by mveloso ( 325617 ) on Wednesday January 12, 2022 @04:33PM (#62168387)

    The FCC has no authority to mandate reporting for data breaches. Their job is to regulate the airwaves.

    WTF, are all these agencies looking for more work? Does the FCC not have enough to do?

    • The FCC has no authority to mandate reporting for data breaches. Their job is to regulate the airwaves.

      WTF, are all these agencies looking for more work? Does the FCC not have enough to do?

      They can't require people who are not providing telecommunications services to disclose anything however they do seem to have some authority over carriers and arguably ISPs.

      "Rulemaking" should be left up to (substantially corrupt) congress to pass laws instead of allowing (substantially corrupt) technocrats to play king.

      • by EvilSS ( 557649 )

        "Rulemaking" should be left up to (substantially corrupt) congress to pass laws instead of allowing (substantially corrupt) technocrats to play king.

        Rulemaking is created by laws though. They pass a law granting rulemaking capability to an agency, or straight up ordering them to make a rule in some cases. The idea is that the agency has the experts to understand the nitty-gritty details of the things they oversee and write the technically details rules under that authority. It also allows flexibility to change rules when needed without a literal act of congress. There are just too many agencies with authority over too many things for congress to deal w

        • Rulemaking is created by laws though. They pass a law granting rulemaking capability to an agency, or straight up ordering them to make a rule in some cases.

          I don't think delegation of lawmaking to technocrats is a good idea. They don't answer to the people and the more you abstract the process the more lawmakers can weasel out of accountability.

          The idea is that the agency has the experts to understand the nitty-gritty details of the things they oversee and write the technically details rules under that authority.

          Whether you head the FCC or are a lawmaker you are able to call upon relevant domain experts to assist with technical and legal details of a policy implementation.

          It also allows flexibility to change rules when needed without a literal act of congress.

          Having barriers of an act of congress is a supremely good thing.

          There are just too many agencies with authority over too many things for congress to deal with handling everything in a timely manor.

          So they can hire more staff at an infinitesimal cost to the tax payer. If it isn't important

          • by EvilSS ( 557649 )
            Well lucky for us your opinion is worth less than a used condom. I get it, I have seen the argument before. Unfortunately it is poorly thought out and unrealistic.
          • by schwit1 ( 797399 )

            The way it is working is not how it's supposed to work according to the Constitution. The problem is that Congress has illegibly delegated legislative decision making to executive agencies. The agencies call their decision rules and policies and regulations, but they all have the force of law. The Constitution says that lawmaking resides with the legislature.

            The courts should slap down this game and the President ought to force his agencies to not make regulations but instead agencies should put together a

      • by EvilSS ( 557649 )
        Also the FCC has a pretty good page on how rulemaking works: https://www.fcc.gov/about-fcc/... [fcc.gov] including a link to Title 47 which grants them their authority: https://www.ecfr.gov/current/t... [ecfr.gov]
    • by eepok ( 545733 )

      You should probably help update their Wikipedia, then. (https://en.wikipedia.org/wiki/Federal_Communications_Commission)

      The Federal Communications Commission (FCC) is an independent agency of the United States federal government that regulates communications by radio, television, wire, satellite, and cable across the United States. The FCC maintains jurisdiction over the areas of broadband access, fair competition, radio frequency use, media responsibility, public safety, and homeland security.

      The FCC was formed by the Communications Act of 1934 to replace the radio regulation functions of the Federal Radio Commission. The FCC took over wire communication regulation from the Interstate Commerce Commission.

    • First result from search for term "FCC Internet Regulation": Broadband and Internet [fcc.gov]

      You must be describing the internet that does not use electronic communications across state lines or international boundaries. Is that the internet based on IP over Avian Carriers [wikipedia.org]?

      By the way, how did you post on Slashdot without using interstate broadband? Please let us in on your secret.

  • Until the senior execs face some real pain. they are never going to budget time/money for proper security. Spending that would cut into their personal income from profits/bonuses.

    There needs to be a law that would make a breach, inadvertent or otherwise, sufficient evidence of a federal felony with mandatory jail time. This would prevent having insurance, or a board decision, cover the cost of a fine.

Top Ten Things Overheard At The ANSI C Draft Committee Meetings: (10) Sorry, but that's too useful.

Working...