特集 : 国別レポートが13,000件から検索可能になりました!

特集 : 海外市場の委託調査がセミカスタムベースでお手軽にできます

株式会社グローバルインフォメーション
市場調査レポート
商品コード
632592

GDPR (EU一般データ保護規則)・eプライバシー規則:MNOのリスクの縮小

GDPR AND E-PRIVACY - MITIGATING THE RISKS FOR MNOS

出版日: | 発行: Mobile Market Development Ltd | ページ情報: 英文 34 Pages | 納期: 即日から翌営業日

価格
価格表記: USDを日本円(税抜)に換算
本日の銀行送金レート: 1USD=106.41円
GDPR (EU一般データ保護規則)・eプライバシー規則:MNOのリスクの縮小
出版日: 2018年05月02日
発行: Mobile Market Development Ltd
ページ情報: 英文 34 Pages
納期: 即日から翌営業日
  • 全表示
  • 概要
  • 目次
概要

当レポートでは、EUによるGDPR (一般データ保護規則)およびeプライバシー規則の施行とMNOへの影響を調査し、GDPRおよびeプライバシー規則の合理性、要件、各国当局によるアプローチ、オペレーターによるエクスペリエンスと優れた対応事例の分析などをまとめています。

第1章 概要

第2章 イントロダクション

第3章 GDPR・eプライバシー規則:MNOにとっての意味

  • イントロダクション
  • GDPR & eプライバシー規則の合理性・原理
  • GDPR & eプライバシー規則の要件
    • GDPR
    • GDPRの国際的展望
    • eプライバシー規則

第4章 当局のアプローチ

  • イントロダクション
  • 全般的指針
  • CNIL (フランス)
  • BfDI (ドイツ)
  • CDPO (チェコ共和国)
  • GPDP (イタリア)
  • AP (オランダ)
  • ICO (英国)

第5章 オペレーターのエクスペリエンスとグッドプラクティス

  • 概要
  • データ侵害・復旧:TalkTalkのエクスペリエンス
    • 背景
    • セキュリティ侵害
    • ペナルティ
    • ビジネスへの影響
    • IT復旧: Remedial Action and Preparation for GDPR
  • コンプライアンスの達成:EUオペレーターのアプローチ
    • ポリシー
    • 顧客
    • ITとセキュリティ
    • サードパーティ
    • インセンティブと測定
  • 顧客へのグッドプラクティス:Orange Belgium
  • Telenor Group
  • Telia

第6章 主要調査結果・総論

  • サマリー
  • MNOへの影響
  • NDPAのアプローチ
  • 総論

第7章 提言

付録

目次

The introduction of GDPR and the EU e-privacy regulations on May 25 places much more stringent requirements on organisations to ensure that an EU customer's data is only used for purposes agreed to by that customer and is held securely. This applies to both the organisation providing goods or services to a customer and any others, whether located in the EU or not, that it has contracted to handle that data. The penalties for failing to meet these requirements can be very severe.

Most mobile operators have many millions of customers and hold extensive data on them, including personal and financial information, their contacts and patterns of behaviour, meaning that any breach could affect very large numbers of people. The nature of their operations means that this data is frequently held on a number of different databases, which often include a variety of systems, increasing the risks of a breach and also making them vulnerable to attack by criminal elements.

It is important that MNOs ensure full compliance with the spirit as well as the letter of the GDPR in order to minimise the risk of default and consequent penalties. They also need be sure that they have taken all feasible actions to mitigate the risks involved.

  • Even operators with no footprint within the EU will almost certainly possess data concerning EU residents, as they roam to other markets for example. Arguably, these operators could come within the remit of the GDPR.

This report looks at the experiences of operators that have suffered a major breach and examples of preparation for GDPR and assesses the likely readiness of the industry. It reviews the approaches being taken by a number of national data protection authorities in order to understand the likelihood of severe penalties being imposed in the early days of the regulations and the types of actions that will mitigate risk and the size of penalties.

Companies : TalkTalk, Orange (Belgium), Telenor, Telia, A1, Wind Tre, CNIL, BfDI, ICO, CPDO, GPDP, AP,

Countries : Global, EU, Austria Belgium, Czech Republic, France, Germany, Ireland, Italy, Netherlands, US, UK, Denmark, Estonia, Hungary,, Malta, Lithuania, Luxembourg, Latvia, Poland, Sweden, Slovenia,

Table of Contents

1 Overview

2 Introduction

  • 2.1 Background to the Report
  • 2.2 Report Content
  • 2.3 Currency and Conversions
  • 2.4 Further Questions and Feedback

3 What GDPR & E-Privacy Means for MNOs

  • 3.1 Introduction
  • 3.2 Rationale & Principles Underlying GDPR & E-privacy.
  • 3.3 The requirements of GDPR & E-privacy
    • 3.3.1 GDPR
    • 3.3.2 International Scope of GDPR
    • 3.3.3 E-privacy

4 Regulators' Approach

  • 4.1 Introduction
  • 4.2 General Guidance
  • 4.3 France, CNIL
  • 4.4 Germany, BfDI
  • 4.5 Czech Republic, CDPO
  • 4.6 Italy - GPDP
  • 4.7 Netherlands - AP
  • 4.8 UK - ICO

5 Operator Experience and Good Practice

  • 5.1 Overview
  • 5.2 Data Breach and Recovery - TalkTalk's Experience
    • 5.2.1 Background
    • 5.2.2 The Security Breaches
    • 5.2.3 The Penalties
    • 5.2.4 Impact on Business
    • 5.2.5 The IT Recovery - Remedial Action and Preparation for GDPR
  • 5.3 Achieving Compliance - An EU Operator's Approach
    • 5.3.1 Policies
    • 5.3.2 The Customer
    • 5.3.3 IT and Security
    • 5.3.4 Third Parties
    • 5.3.5 Incentives and Measurement - Departmental Status
  • 5.4 Good Practice for Customers - Orange Belgium
  • 5.5 Telenor Group
  • 5.6 Telia

6 Findings and Conclusions

  • 6.1 Summary
  • 6.2 Implications for MNOs
  • 6.3 Approach of NDPAs
  • 6.4 Conclusions

7 Recommendations

Appendix - Feedback Questions

株式会社グローバルインフォメーション
© Copyright 1996-2020, Global Information, Inc. All rights reserved.