FICORA requests telecoms operators clarification of information security of communications services
Published 12.06.2013According to information in the media, the United States security authorities would have access to the confidential user information of several companies offering electronic services. Also Finnish telecoms operators may build their communications services on the products of these companies. FICORA will now examine whether the activities of the United States security authorities have affected the information security of communications services provided by Finnish telecoms operators. Telecoms operators are obliged to ensure the information security of their communications services. The measures taken in order to ensure information security must be commensurate with the seriousness of threats, technical development level and expenses.
Telecoms operators have limited possibilities to ensure the information security of communications crossing the Finnish borders. If, despite all measures taken, the services of a telecoms operator were under a special threat that was beyond its control, the operator must notify its subscribers of such threats. An example of such a threat would be that another state's authority was capable of monitoring the communication of users.
With the help of the clarification request delivered to telecoms operators, FICORA will examine what sort of communications services implemented with foreign partners are provided to Finns, and who these partners are. In addition, telecoms operators are requested to deliver information on how they ensure the information security of these services, and how information security is affected by intelligence activities. Telecoms operators must also report how they inform their customers of the special information security threats related to the use of the services in question.
Jarkko Saarimäki, Chief, +358 295 390 576