Cybersecurity—Ukraine—Q&A guide [Archived, 2019 edition]

The following Information Law practice note provides comprehensive and up to date legal information covering:

  • Cybersecurity—Ukraine—Q&A guide [Archived, 2019 edition]
  • 1. Summarise the main statutes and regulations that promote cybersecurity. Does your jurisdiction have dedicated cybersecurity laws?
  • 2. Which sectors of the economy are most affected by cybersecurity laws and regulations in your jurisdiction?
  • 3. Has your jurisdiction adopted any international standards related to cybersecurity?
  • 4. What are the obligations of responsible personnel and directors to keep informed about the adequacy of the organisation’s protection of networks and data, and how may they be held responsible for inadequate cybersecurity?
  • 5. How does your jurisdiction define cybersecurity and cybercrime?
  • 6. What are the minimum protective measures that organisations must implement to protect data and information technology systems from cyberthreats?
  • 7. Does your jurisdiction have any laws or regulations that specifically address cyberthreats to intellectual property?
  • 8. Does your jurisdiction have any laws or regulations that specifically address cyberthreats to critical infrastructure or specific sectors?
  • 9. Does your jurisdiction have any cybersecurity laws or regulations that specifically restrict sharing of cyberthreat information?
  • More...

Cybersecurity—Ukraine—Q&A guide [Archived, 2019 edition]

This Practice Note contains a jurisdiction-specific Q&A guide to cybersecurity in Ukraine published as part of the Lexology Getting the Deal Through series by Law Business Research (published: December 2019).

Authors: Asters—Yuriy Kotliarov; Sergiy Tsyba; Mariia Bokach

1. Summarise the main statutes and regulations that promote cybersecurity. Does your jurisdiction have dedicated cybersecurity laws?

The main statutes and regulations that promote cybersecurity are as follows:

  1. the Law on the Main Principles of Maintaining Cybersecurity of Ukraine (the Cybersecurity Law);

  2. the Law on the Protection of Information in Information and Telecommunication Systems;

  3. the Budapest Convention on Cybercrime (the Budapest Convention);

  4. the Resolution of the Ukrainian National Security and Defence Council on the Cybersecurity Strategy of Ukraine, approved by Presidential Decree (the National Cybersecurity Strategy);

  5. the Decree of the Cabinet Ministers of Ukraine On the Adoption of the General Requirements for Cyber-Protection of Critical Infrastructure Objects (the General Requirements for CIO).

The Cybersecurity Law establishes the legal and regulatory framework for a number of measures in the cybersecurity domain. It lays down the main areas of the state policy as well as the roles of the major responsible stakeholders in cybersecurity. The Cybersecurity Law introduces the concept of critical infrastructure and critical information infrastructures. It puts stringent security requirements on organisations running the critical infrastructure. The Cybersecurity Law defines terms such as cybersecurity, cyberspace, cyberthreat, cyberattack,

Popular documents