Roskomnadzor took the initiative to request passport data, phone number, e-mail and residential address when registering new users of social networks and instant messengers. This is stated in the draft order of the department, which on Wednesday, March 24, was posted on the Federal portal of draft regulatory legal acts and is currently undergoing a stage of public discussion.
Earlier, as part of the amendments to the Law on Personal Data, which partially entered into force in March, operators of personal data were prohibited from publishing personal information of users on the Internet without their consent. We are talking about data from social networks, from classified sites and from open registries. From July 1, they will be required to obtain this consent either through their own platform or through the unified information system (UIS) of Roskomnadzor. In this case, the user himself will be able to choose the platform.
According to the document, when registering with the help of the Roskomnadzor mechanism, passport data, address and contact information will be checked through “Gosuslugi”, which will link with the EIS. Also, this information can be transferred to other government agencies in cases determined by federal laws.
The draft order does not indicate what data the user will have to provide when choosing to pass identification through the operator’s system.
On March 23, the deputy head of Roskomnadzor, Vladimir Logunov, during a meeting of the State Duma’s inter-faction group on cybersecurity, proposed to oblige operators of personal data to compensate victims for the leakage of this information. Logunov added that Roskomnadzor plans to work on this idea at the site of the State Duma.
In turn, the representative of the Ministry of Internal Affairs of Russia Alexei Plotnitsky pointed out that the leaks of personal data do not come from the department, but namely from their commercial organizations, where the Russians transfer such information.
At the end of January, it became known that the number of court cases related to data theft had doubled over the past year to at least 100 incidents. According to the results of a study by the DLBI data breach intelligence service, charges against employees of operators and mobile salons took the leading position: their share increased from 44% of the total number of such incidents in 2019 to 67% in 2020.
At the same time, it was indicated that the total number of cases brought to court on the sale of data from state departments remained at the same level, from banks – increased by 30%, from commercial organizations – doubled, and from telecom operators – tripled.