2023-09-26 20:49:00
Rules refer to communication in case of failures Edu Garcia/04.09.2023 The BC (Central Bank) published this Tuesday (26) new rules on security failures related to Pix. The changes refer to communication in cases of personal data leaks and the penalties that institutions participating in Pix are subject to if they fail to comply with the rules. As a result, banks will have to notify consumers whenever there is a data leak, even if there is no risk or reason for the failure. “The rule determines that the institutions holding the account of the holders of personal data will have the duty to notify their own customers, regardless of whether they caused the incident and even if the case cannot entail risk or relevant data for end users”, states the BC in note. According to the agency, although the LGPD (General Personal Data Protection Law) determines the obligation to communicate only in cases with potential risk or relevant damage, since the launch of Pix, the BC has opted for communication even in cases of lesser impact. “The BC assesses that this commitment to full transparency has brought numerous benefits to society”, explains the text. The standard provides that the duty falls on the customer’s relationship institution, even if it did not cause the event, since it is the institution that has a secure communication channel, accessible exclusively through personal identification, such as password, biometric recognition, etc. . The resolution also provides for improvements to Pix’s penalty framework, so that cases of non-compliance with security requirements can be penalized according to their effects, with more severe penalties being able to be applied in cases of greater impact, considering not only regulatory non-compliance itself, but the repercussions caused by such nonconformity. For cases involving security incidents involving personal data related to Pix, a weighting factor was also added to calculate the value of the fine, which will consider the number of Pix keys potentially affected.
#Central #Bank #launches #rules #Pix #security #flaws