Data is valuable. Whether classified business information or personal data, all forms of information can have significant value. If personal information falls into the wrong hands, there can be many undesirable consequences, such as information manipulation or identity fraud. Not to mention, reputational and financial consequences for the organization. Because the dangers of failing security systems are great and the consequences of cyber incidents are often incalculable, information security negligence is even punishable today.
Legislation related to information security was until recently enshrined in the Data Protection Act (Wbp), but this has been replaced by the General Data Protection Regulation (AVG). The Telecommunications Act, the ePrivacy Regulation and the Network and Information Security (NIS) Directive also require organizations and companies to handle various forms of information in a risk-oriented manner.
With the introduction of the AVG, many companies and organizations have had to rethink how they manage information. This file provides an overview of what is currently going on in the field of information security related to privacy and helps you get started within this topic.
Civil Service information security regulation decree 2007
LegislationRegulation of information security regulation of the civil service special information 2025
LegislationBaseline Information Security Government 2 (BIO2).
HandoutsInternet consultation on new cyber rules launched
News/press releaseElection special #1: CDA vs. PVV - digitization themes compared
News press releaseBaseline Information Security Government 2 (BIO2).
HandoutsEmployees more confident about digital security, but phishing grows
News press releaseNew BIO2 enacted: government tightens information security
News press release
