Is the absence of SSL on the site a violation of the Federal Law No. 152 “On Personal Data” that collects customer data?

D

Dmitry Volodarsky2016-12-01 15:34:39

Law in IT

Dmitry Volodarsky, 2016-12-01 15:34:39

For example, there is a site where, when registering, I need to indicate not only my full name, but also my passport data, if this site is not protected by an SSL connection, is this a violation of data processing law?

Reply

Answer the question

In order to leave comments, you need to log in

5 answer(s)

O

other_letter, 2016-12-01
@other_letter

FZ-152 recognizes a very limited range of remedies. If you use SSL from the "wrong" center - from the point of view of the Federal Law, you also do not fulfill the requirements.
However, in practice, any objective steps to protect personal data are good.

X

xmoonlight, 2016-12-01
@xmoonlight

No.
SSL gives trust, but does not guarantee security! (although they say otherwise...)
The apparent lack of SSL is, of course, only a VISIBLE disadvantage for users.
Data can be encrypted without SSL and can also be transferred to third parties after passing inside SSL (or somewhere along the way).
(and Federal Law No. 152 has nothing to do with it)

M

Maxim Maxim, 2016-12-01
@maksky

I wouldn't enter personal information on a site without SSL.)

Z

zooks, 2016-12-01
@zooks

Servers where data is stored must be in Russia. The presence of SSL under this law is optional.

S

Sergey, 2016-12-02
@edinorog

Please tell me your site. It’s not like I’m entering my data there ... I won’t go to it after such questions)