Responsibility for illegal processing of personal data will increase significantl

[tanjimajuha20]

Russia will tighten penalties for illegal processing and leaks of personal data — maximum fines will increase to 1.5 million rubles. The Cabinet of Ministers supported such amendments. According to the authors of the initiative, the measure will help reduce the number of cases of compromise of personal data, including biometric data. In the first six months of 2023 alone, more than 200 million records about Russians were leaked to the Internet, according to malta whatsapp number database information from Roskomnadzor. Existing fines are disproportionate to the consequences of such violations, especially if biometrics are disclosed — it cannot be changed like a password, but it is with its help that citizens receive many banking services and certify transactions, experts say.

Fines are higher
y - such changes to the Code of Administrative Offenses were supported by the government commission on legislative activity, Izvestia found out.

The problem of leaks has not lost its relevance for many years. According to Roskomnadzor, in 2022 there were about 150 major incidents in this area. In the first half of 2023 - 75, more than 200 million records about Russians got into the network.

The volume of leaks continues to grow, including due to the increasing complexity of attack scenarios and the tools of intruders, Mikhail Adonyev, GR Director of Solar Group, told Izvestia.

“It is impossible to guarantee their absence 100%, but it is necessary to increase the level of protection,” he said.

The authors of the bill, including State Duma Speaker Vyacheslav Volodin and Deputy Speaker Irina Yarovaya, propose significantly increasing fines for processing personal data without written consent. The penalty for violation will be up to 15 thousand rubles for citizens (instead of the current 6-10 thousand), up to 300 thousand for officials (instead of 20-40 thousand), and up to 500 thousand for legal entities (instead of 30-150 thousand).

For a repeat violation of this type, the maximum fines will increase to 30, 500 thousand and 1.5 million rubles, respectively.

"The initiative is currently being prepared in the State Duma for the second reading. The sanctions proposed in the initial draft were lower," Vladimir Gruzdev, chairman of the board of the Association of Lawyers, told Izvestia.

The Department of Information Technology of the Government of the Russian Federation in its response to the draft law drew attention to the fact that identification technologies using biometrics allow many legally significant actions to be performed - receiving government services, opening bank accounts, notarizing documents and transactions, gaining access to protected facilities. Therefore, they supported toughening the punishment for disseminating such data.

As a rule, leaks result in fraudulent actions or the use of the obtained data for intrusive advertising campaigns, the chairman of the Moscow Bar Association "Advokat", lawyer Andrei Misarov, told Izvestia. And if previously biometric databases were operated by state companies, then with the development of technology, more and more of them are collected by private firms.