Alexander Bykov, head of the security services

tanjimajuha20 · Post by **tanjimajuha20** » Mon Jan 20, 2025 6:42 am

The head of the information security committee of the ARPP "Domestic Software" and the director of strategy and technology development of JSC "Bellsoft" (Axiom JDK) Roman Karpov called the parliamentarians' initiative correct. "It is especially relevant if the proposed model of professional personal data custodians can be supplemented with labeling of this very data - who and how they originally received it," Roman Karpov noted.

department at the cloud qatar whatsapp resourceprovider OOO NUBES (Nubes), believes that for some companies this could become an easier way to ensure compliance with the regulator's requirements regarding personal data. "On the other hand, such operators could become another point of vulnerability and a potential channel for personal data leakage. Moreover, the data of many companies stored by these operators could be compromised at once," he believes.

Deputy Technical Director of Innostage LLC Daniyar Iskhakov noted that given the future introduction of turnover fines for leaks of personal data, the creation of such operators may be interesting for business, but at the same time, measures such as encryption of the communication channel, protection of the workplaces of employees who request personal data, protection of applications where the requested personal data are processed and from where they may leak will still be required.

Daniyar Iskhakov believes that businesses will have to compare the cost and benefit of developing information security systems and the cost of services of personal data operators. In his opinion, the use of such services will be charged for businesses.

Kirill Semion, General Director of the ANO National Competence Center for Information Systems of Holding Management, believes that the creation of personal data operators in Russia is interesting for companies in the small and medium business segment, since it is difficult for them to bear additional costs for high-quality protection of personal data. "Large corporations will most likely not use the services of personal data operators because of the desire to have a full guarantee of compliance with commercial secrets," he believes.

According to Kirill Semion, it would be better if federal bodies form requirements for these operators and control their implementation: this will ensure impartiality. In addition, according to him, not only the mechanisms for protecting personal data are fundamental, but also the guarantee of preserving the commercial secrets of clients.

The press service of Roskomnadzor did not respond to ComNews' request.