SEOUL, KOREA – On Monday, a new Information & Communications Network Act went into effect that requires the separation of systems handling personally identifiable information. Beside, an Information Security Management System (ISMS) has also been introduced, bringing a big change to Korea’s security-related law system.
As the Korean government opts for reinforced supervision, companies that procrastinated over investment have started to take steps. Companies that fail to take technical protection measures such as the separation of networks will be fined up to KRW 30 million; if such unarmed companies have their customers’ personal information leaked or stolen, they will be sentenced to less than two years in prison with a penalty of less than KRW 100 million.
Under the Act, companies are required to separate internal networks from external Internet networks or if they use a single transport network or a PC, they have to virtually separate internal networks from external networks.
On top of that, companies annually have to disclose the details of their investments in information protection on their official websites.
Sean Chung (hbpark@etnews.com)
**Article provided by etnews [Korea IT News]
[Reference] : http://english.etnews.com/electronics/2715655_1303.html
