Act on increasing the security of IT systems (German IT Security Act 1.0)
With the German IT Security Act ein force since July 2015, the Federal Government is playing its part in making Germany's IT systems and digital infrastructures the most secure in the world. Especially in the area of critical infrastructures (KRITIS, which relate to the secure supply of things like food, water, and electricity, as well as the security of financial systems), a failure or impairment of services would have dramatic consequences for the economy, the government and society in Germany. The availability and security of IT systems thus plays an important and central role in this regard
However, the German IT Security Act also aims to improve IT security at companies and in the federal administration, in addition to increasing the protection of citizens using the Internet. Along with the stakeholders outlined above, individual regulations of the German IT Security Act therefore also apply to operators of commercial web offerings, which must meet higher requirements for their IT systems. Telecommunications companies will also face greater demands in the future. They will be obliged to warn their customers if they detect misuse of a customer's connection and present possible solutions to those affected. The competent supervisory authority in these cases is the. Federal Network Agency. The efforts undertaken to achieve these objectives have included extending the functions and powers of the Federal Office for Information Security (BSI)
Answers to the most important questions can be found in our on the following pages, as well as in the BSI's information brochures: