Internet in the enterprise. The provider requires the passport data of all employees using the Internet. How to act in this situation?

K

Ktulhoo_1772014-09-12 16:15:59

Personal Information

Ktulhoo_177, 2014-09-12 16:15:59

Good afternoon.
A paper came from the provider, in which it is proposed to supplement the Contract for the provision of communication services with clauses stating that we, as clients, are obliged to provide the Passport data of all employees using the Internet once a quarter to the provider. There is such a law and it is clear that it will need to be done.
The question is how to properly organize the storage of personal data so that they don’t bend over for it?
What to do with access via Wi-Fi?
And in passing - are we (the IT department) obliged to keep access logs of employees to the Internet? If we are obliged, then on what basis and for how many years to keep.

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

E

Eugene, 2014-09-15
@Ktulhoo_177

Indeed, there is now a requirement to collect PD of Internet users, and the first checks on the implementation of this law have already begun.
However, in your current contract with the operator, you probably do not have a requirement to collect and transfer such data to him. So at the moment, refuse to provide PD of employees, since you have no reason to do so. At the moment, until the provider has forced you to renew a new contract, where he will prescribe such requirements for you, this will be his headache.
I advise you to read these posts (as well as cross-links)
anvolkov.blogspot.ru/2014/09/blog-post_15.html#more
lukatsky.blogspot.ru/2014/09/wi-fi-152.html

O

oia, 2014-09-12
@oia

and what about your lawyers, that immediately a question on a technical forum can ask the provider to provide an extract from the law where it is indicated?