The adoption of the resolution marks
Posted: Sun Feb 09, 2025 6:32 am
The resolution sets out various measures that must be taken to ensure adequate safeguards and protection of people’s rights. These include a call for international cooperation to promote safe, secure and trustworthy AI; continued development and support by Member States of the regulatory framework and governance system; ensuring equal access to technology across borders; respect for human rights and fundamental freedoms; fair, inclusive and responsible use of data; and much more.
The resolution does not include any measures to address the consequences or force countries to comply with the agreement. So, technically, countries that agree to the resolution are not actually obligated to implement it. Even though the resolution is not binding, it is still a huge step towards global regulation of AI, setting a precedent for future legislation. It also creates a framework for countries to develop their own regulatory policies.
Liability in Information Security. Part 1: Administrative Offences and Civil Disputes
Alexey Parfentyev, Head of Analytics Department, SearchInform | 03/22/2024
Responsibility for violations in the field of information security is becoming stricter every year and there are several reasons for this. The first reason is the increasing popularity of the topic of information security among ordinary citizens, whose indignation forces the regulator and the government to make appropriate decisions. The second reason is the high frequency of specific violations, which force the regulator to tighten responsibility for them.
In this series of materials about "crimes and punishments" in information security, we will analyze the causes and consequences, and also provide examples of violations. The articles will be useful for both IT and information security directors, as well as ordinary employees of security services. The first material will analyze administrative violations and panama mobile database disputes in the context of information security.
Personal data leak
The number of personal data leaks has been growing in recent years. They affected both government agencies and businesses from various industries. According to our annual study, 44% of companies experienced a data leak in 2022. In 2023, this figure was 66%. One of the first leaks that started this trend occurred in July 2022 in the Tutu.ru service: the company was subjected to a targeted hacker attack - hackers stole and posted a database of customer personal data in the public domain. The organization did not deny the fact of the leak and was fined 60 thousand rubles.
An administrative fine is imposed for the leakage of personal data:
for legal entities up to 100 thousand rubles for the first violation and up to 300 thousand rubles for a repeat violation;
for officials from 20 thousand rubles for the first violation and up to 50 thousand rubles for a repeat violation.
Recently, the State Duma adopted in the first reading a bill on “Turnover Fines”, which significantly increases the amount of fines:
for legal entities from 3 to 15 million rubles for the first violation and from 0.1 to 3 % of the company's revenue, but not less than 15 million rubles and not more than 500 million rubles for a repeat violation;
an important moment for the development of AI, as it is the first global resolution addressing this powerful, emerging technology.
The resolution does not include any measures to address the consequences or force countries to comply with the agreement. So, technically, countries that agree to the resolution are not actually obligated to implement it. Even though the resolution is not binding, it is still a huge step towards global regulation of AI, setting a precedent for future legislation. It also creates a framework for countries to develop their own regulatory policies.
Liability in Information Security. Part 1: Administrative Offences and Civil Disputes
Alexey Parfentyev, Head of Analytics Department, SearchInform | 03/22/2024
Responsibility for violations in the field of information security is becoming stricter every year and there are several reasons for this. The first reason is the increasing popularity of the topic of information security among ordinary citizens, whose indignation forces the regulator and the government to make appropriate decisions. The second reason is the high frequency of specific violations, which force the regulator to tighten responsibility for them.
In this series of materials about "crimes and punishments" in information security, we will analyze the causes and consequences, and also provide examples of violations. The articles will be useful for both IT and information security directors, as well as ordinary employees of security services. The first material will analyze administrative violations and panama mobile database disputes in the context of information security.
Personal data leak
The number of personal data leaks has been growing in recent years. They affected both government agencies and businesses from various industries. According to our annual study, 44% of companies experienced a data leak in 2022. In 2023, this figure was 66%. One of the first leaks that started this trend occurred in July 2022 in the Tutu.ru service: the company was subjected to a targeted hacker attack - hackers stole and posted a database of customer personal data in the public domain. The organization did not deny the fact of the leak and was fined 60 thousand rubles.
An administrative fine is imposed for the leakage of personal data:
for legal entities up to 100 thousand rubles for the first violation and up to 300 thousand rubles for a repeat violation;
for officials from 20 thousand rubles for the first violation and up to 50 thousand rubles for a repeat violation.
Recently, the State Duma adopted in the first reading a bill on “Turnover Fines”, which significantly increases the amount of fines:
for legal entities from 3 to 15 million rubles for the first violation and from 0.1 to 3 % of the company's revenue, but not less than 15 million rubles and not more than 500 million rubles for a repeat violation;
an important moment for the development of AI, as it is the first global resolution addressing this powerful, emerging technology.