Data protection and Cybersecurity
The comprehensive new provisions on data protection is based on the General Data Protection Regulation (GDPR, in Austria named "Datenschutzgrundverordnung or DSGVO"), which created a uniform data protection law for all EU Member States. The EU regulation gives the legislators of the individual Member States a degree of latitude.
In Austria, this was applied by the resolution of the "Data Protection Adaptation Act 2018". From 25th May 2018, the EU General Data Protection Regulation (GDPR-Regulation (EU) 2016/679) and the Austrian Data Protection Act (DSG – as amended by the Data Protection Amendment Act 2018) will apply in Austria. The regulation means more protection for citizens' personal data.
The GDPR (or DSGVO) is not applied when generally available, i.e. public data, are concerned. Nor is it applicable when completely anonymous or anonymised data is in use without the ability to relate to a person. Similarly, it does not apply to the processing of data for a purely private or family purpose. In addition, it is not applicable when processing data outside the European Union, except where a processor or service provider is not established in the EU and offers goods or services (regardless of payment) in the EU.
Special categories of personal data are:
- Racial and ethnic origin
- Political opinion
- Religious or ideological beliefs
- Union membership
- Genetic, biometric data
- Health data
- Data concerning sexual activity or sexual orientation
- Data on criminal convictions and offenses
Attacks on computers, smartphones and the like are constantly increasing and becoming more and more professional. According to a study carried out by the Centre for Strategic and International Studies (CSIS), the damage caused by cybercrime to the global economy is now 600 billion $ (490 billion €) per year.
The crime statistics of the Federal Criminal Police Office confirm the trend towards cybercrime. It is now one of the five crime areas with the greatest impact on the sense of security of society.
In order to counteract this trend, in addition to technical and organisational measures, more safety awareness and digital education of the affected target groups are necessary. For this purpose, the ICT Security Portal at https://www.onlinesicherheit.gv.at/ was launched in February 2013. Through a co-ordination of administration and business (40 cooperation partners), a central Internet portal was created, which deals exclusively with topics relating to security in the digital world and is unique in this form.
The extensive range of services is aimed at both beginners and experts, and includes information on risks in the internet, advice and help on the secure use of computers, smartphones, etc. as well as further information and contact details of hotlines and reporting points for emergencies – guaranteed independent and well-founded.
The ICT Security Portal is a strategic measure of the National ICT Security Strategy and the Austrian Cyber Security Strategy to promote and sustainably strengthen the ICT and cyber security culture in Austria.