Main Menu
Print PDF

Threat Information Sharing Under GDPR

The SciTech Lawyer | March 4, 2019
By: Richard Borden, Joshua Mooney, Mark Taylor and Matthew Sharkey

The General Data Privacy Regulation (GDPR) is intended to protect the fundamental rights of EU data subjects. However, where GDPR intersects with cybersecurity is little understood. This, in turn, has undermined threat information sharing as an essential tool for combating cyberattacks, including attacks engineered by criminal and terrorist organizations, and Nation States.

As cyberattacks continue to increase in number and sophistication, threat information sharing may (and should) be employed by banks, brokers, insurance carriers, and other areas of critical infrastructure to identify vulnerabilities and prevent the spread of successful cyberattacks to other organizations.

Rick Borden and Josh Mooney address threat information sharing and discuss why it is lawful under GDPR in their article Threat Information Sharing Under GDPR.

This correspondence should not be construed as legal advice or legal opinion on any specific facts or circumstances. The contents are intended for general informational purposes only, and you are urged to consult a lawyer concerning your own situation and legal questions.
Back to Page