The Institute of Contemporary Development held a seminar on information security, focusing on “Requirements and Application of Legislation on Personal Information”.
 
The discussion participants reviewed a new draft of the document “The role and place of information security and IT departments in a company: Recommendations on the creation of an information security department”.
 
Participants of the event included representatives of the State Duma, supporting staff of the Security Council, heads of federal agencies, IT directors, academics and experts of the Institute of Contemporary Development.
 
The seminar was moderated by Victor Minin, adviser to the chairman of the Association of Information Protection, and Yuri Shoidin, IT director, Intarcia Group.
 
For the first time the seminar was broadcast via a live video feed on the websites of the Union of IT Director and the Institute of Contemporary Development, allowing experts across the country to follow the discussions in real time.
 
The seminar was divided in two parts – current legislation and technical issues concerning protection of personal data.
 
The speakers pointed out some discrepancies in the existing legislation on protection of personal information, namely:
 
- ambiguity of certain clauses of the Law on Personal Data, leading to various interpretation by state regulators and private-sector operators;
 
- limited powers of the authority in charge of protecting the rights of personal data subjects, making it difficult administer in full the agency’s responsibilities;
 
- when the draft Law on Personal Data was submitted to the State Duma no related expenditure from the federal budget was envisaged, although implementation of the legislation involves budget expenditures at all levels.
 
The participants agreed to prepare proposals for amending the Law on Personal Data and submit them to the government and the State Duma.
 
The seminar was supported by the Institute of Contemporary Development (INSOR).