The Legal Status of Digital Service Providers in the Sphere of Cybersecurity

Mirosław Karpiuk

Abstract


The article addresses the issue regarding the obligations of digital service providers performed in the area of cybersecurity. Because of their status as entities within the national cybersecurity system, they must respond to disruptions occurring in cyberspace. The measures taken by digital service providers to ensure the security of the information systems used to provide the digital service must lead to the minimisation of the risk of incidents i.e. phenomena that have or may have an adverse impact on cybersecurity. Economic and social development depends to a large extent on smoothly operating communication and information systems that ensure the provision of various types of services, including digital services. Disruptions in the functioning of these systems affect not only the stability of economic circulation but also the effectiveness of public institutions in performing their tasks. Given the above, the information obligations imposed on digital service providers regarding the requirement to report incidents or those related to taking measures to prevent or minimise their impact on a digital service are of major importance.


Keywords


digital service; cybersecurity; information systems; public institutions

Full Text:

PDF

References


LITERATURE

Chałubińska-Jentkiewicz K., [in:] Ustawa o krajowym systemie cyberbezpieczeństwa. Komentarz, eds. K. Chałubińska-Jentkiewicz, M. Karpiuk, J. Kostrubiec, Warszawa 2022.

Chałubińska-Jentkiewicz K., Cyberbezpieczeństwo – zagadnienia definicyjne, “Cybersecurity and Law” 2019, vol. 2(2), DOI: https://doi.org/10.35467/cal/133828.

Chałubińska-Jentkiewicz K., Karpiuk M., Kostrubiec J., The Legal Status of Public Entities in the Field of Cybersecurity in Poland, Maribor 2021, DOI: https://doi.org/10.4335/2021.5.

Czuryk M., Activities of the Local Government During a State of Natural Disaster, “Studia Iuridica Lublinensia” 2021, vol. 30(4), DOI: https://dx.doi.org/10.17951/sil.2021.30.4.111-124.

Czuryk M., Cybersecurity as a Premise to Introduce a State of Exception, “Cybersecurity and Law” 2021, vol. 6(2), DOI: https://doi.org/10.35467/cal/146466.

Czuryk M., Restrictions on the Exercising of Human and Civil Rights and Freedoms Due to Cybersecurity Issues, “Studia Iuridica Lublinensia” 2022, vol. 31(3), DOI: https://dx.doi.org/10.17951/sil.2022.31.3.31-43.

Czuryk M., Special Rules of Remuneration for Individuals Performing Cybersecurity Tasks, “Cybersecurity and Law” 2022, vol. 8(2), DOI: https://doi.org/10.35467/cal/157128.

Czuryk M., Supporting the Development of Telecommunications Services and Networks through Local and Regional Government Bodies, and Cybersecurity, “Cybersecurity and Law” 2019, vol. 2(2), DOI: https://doi.org/10.35467/cal/133839.

Dubel L., Kostrubiec J., Ławnikowicz G., Markwart Z., Nauka o państwie i polityce, Warszawa 2022.

Gryszczyńska A., [in:] Ustawa o krajowym systemie cyberbezpieczeństwa. Komentarz, eds. G. Szpor, A. Gryszczyńska, K. Czaplicki, LEX/el. 2019.

Gumularz M., Świadczenie usług drogą elektroniczną. Komentarz, LEX/el. 2019.

Hoffman I., Cseh K.B., E-administration, Cybersecurity and Municipalities – the Challenges of Cybersecurity Issues for the Municipalities in Hungary, “Cybersecurity and Law” 2020, vol. 4(2), DOI: https://doi.org/10.35467/cal/133999.

Hoffman I., Karpiuk M., E-administration in Polish and Hungarian Municipalities – a Comparative Analysis of the Regulatory Issues, “Lex localis – Journal of Local Self-Government” 2022, vol. 20(3), DOI: https://doi.org/10.4335/20.3.617-640(2022).

Hoffman I., Karpiuk M., The Local Self-Government’s Place in the Cybersecurity Domain: Examples of Poland and Hungary, “Cybersecurity and Law” 2022, vol. 7(1), DOI: https://doi.org/10.35467/cal/151826.

Hoffman I., Kostrubiec J., Political Freedoms and Rights in Relation to the Covid-19 Pandemic in Poland and Hungary in a Comparative Legal Perspective, “Bialystok Legal Studies” 2022, vol. 27(2), DOI: https://doi.org/10.15290/bsp.2022.27.02.02.

Karpiuk M., Recognizing an Entity as an Operator of Essential Services and Providing Cybersecurity at the National Level, “Prawo i Więź” 2022, no. 4.

Karpiuk M., The Local Government’s Position in the Polish Cybersecurity System, “Lex localis – Journal of Local Self-Government” 2021, vol. 19(3), DOI: https://doi.org/10.4335/19.3.609-620(2021).

Karpiuk M., The Organisation of the National System of Cybersecurity: Legal Issues, “Studia Iuridica Lublinensia” 2021, vol. 30(2), DOI: https://dx.doi.org/10.17951/sil.2021.30.2.233-244.

Karpiuk M., The Provision of Safety in Water Areas: Legal Issues, “Studia Iuridica Lublinensia” 2022, vol. 31(1), DOI: https://dx.doi.org/10.17951/sil.2022.31.1.79-92.

Karpiuk M., Włodek T., Wygaśnięcie mandatu wójta na skutek skazania na karę grzywny za niedopełnienie obowiązków z zakresu zarządzania kryzysowego. Glosa do wyroku Sądu Rejonowego w P. z dnia 18 kwietnia 2019 r. (II K 1164/14), “Studia Iuridica Lublinensia” 2020, vol. 29(1), DOI: https://dx.doi.org/10.17951/sil.2020.29.1.273-290.

Konaszczuk W., Cybersecurity Threats in the Sectors of Oil, Natural Gas and Electric Power in the Context of Technological Evolution, “Studia Iuridica Lublinensia” 2021, vol. 30(4), DOI: https://dx.doi.org/10.17951/sil.2021.30.4.333-351.

Kostrubiec J., Cybersecurity System in Poland: Selected Legal Issues, [in:] The Public Dimension of Cybersecurity, eds. M. Karpiuk, J. Kostrubiec, Maribor 2022.

Kostrubiec J., The Position of the Computer Security Incidents Response Teams in the National Cybersecurity System, “Cybersecurity and Law” 2022, vol. 8(2), DOI: https://doi.org/10.35467/cal/157121.

Nowińska E., Szczepanowska-Kozłowska K., Ustawa o zwalczaniu nieuczciwej konkurencji. Komentarz, LEX/el. 2022.

Pizło W., Management in Cyberspace: From Firewall to Zero Trust, [in:] The Public Dimension of Cybersecurity, eds. M. Karpiuk, J. Kostrubiec, Maribor 2022.

Radoniewicz F., [in:] Ustawa o krajowym systemie cyberbezpieczeństwa. Komentarz, eds. W. Kitler, J. Taczkowska-Olszewska, F. Radoniewicz, Warszawa 2019.

Stępniak M., Tracz P., [in:] Prawo przedsiębiorców. Komentarz, ed. A. Pietrzak, LEX/el. 2019.

Szpor G.M., The Evolution of Cybersecurity Regulation in the European Union Law and Its Implementation in Poland, “Review of European and Comparative Law” 2021, vol. 46(3), DOI: https://doi.org/10.31743/recl.12645.

LEGAL ACTS

Act of 16 April 1993 on combating unfair competition (consolidated text, Journal of Laws 2022, item 1233).

Act of 18 July 2002 on the provision of services by electronic means (consolidated text, Journal of Laws 2020, item 344, as amended).

Act of 5 August 2010 on the protection of classified information (consolidated text, Journal of Laws 2019, item 742, as amended).

Act of 6 March 2018 – Enterprise Law (consolidated text, Journal of Laws 2021, item 162, as amended).

Act of 5 July 2018 on the national cybersecurity system (consolidated text, Journal of Laws 2022, item 1863).

Commission Implementing Regulation (EU) 2018/151 of 30 January 2018 laying down rules for application of Directive (EU) 2016/1148 of the European Parliament and of the Council as regards further specification of the elements to be taken into account by digital service providers for managing the risks posed to the security of network and information systems and of the parameters for determining whether an incident has a substantial impact (OJ L 26/48, 31.1.2018).

Regulation (EU) No. 1025/2012 of the European Parliament and of the Council of 25 October 2012 on European standardisation, amending Council Directives 89/686/EEC and 93/15/EEC and Directives 94/9/EC, 94/25/EC, 95/16/EC, 97/23/EC, 98/34/EC, 2004/22/EC, 2007/23/EC, 2009/23/EC and 2009/105/EC of the European Parliament and of the Council and repealing Council Decision 87/95/EEC and Decision No 1673/2006/EC of the European Parliament and of the Council (OJ L 316/12, 14.11.2012).

CASE LAW

Judgment of the Voivodeship Administrative Court of 30 December 2019, II SA/Rz 1266/19, LEX no. 2825840.

Judgment of the Voivodeship Administrative Court of 8 January 2020, II SA/Wa 1385/19, LEX no. 3078853.




DOI: http://dx.doi.org/10.17951/sil.2023.32.2.189-201
Date of publication: 2023-06-27 10:36:52
Date of submission: 2023-01-22 17:39:31


Statistics


Total abstract view - 769
Downloads (from 2020-06-17) - PDF - 0

Indicators



Refbacks

  • There are currently no refbacks.


Copyright (c) 2023 Mirosław Karpiuk

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.