References of "Schmitz, Sandra 50026259"
     in
Bookmark and Share    
Full Text
Peer Reviewed
See detailRefining the Mandatory Cybersecurity Incident Reporting under the NIS Directive 2.0: Event Types and Reporting Processes
Schmitz, Sandra UL

in Onwubiko, Cyril; Rosati, Pierangelo; Rege, Aunshul (Eds.) et al Proceedings of the International Conference on Cybersecurity, Situational Awareness and Social Media (2023, March 08)

Detailed reference viewed: 37 (0 UL)
Full Text
Peer Reviewed
See detailTowards an Efficient and Coherent Regulatory Framework on Cybersecurity in the EU: The Proposals for a NIS 2.0 Directive and a Cyber Resilience Act
Cole, Mark David UL; Schmitz, Sandra UL

in Applied Cybersecurity & Internet Governance (2022), 1(1),

Cybersecurity regulation in the EU has long been implemented in a piece- meal fashion resulting in a fragmented regulatory landscape. Recent developments triggered the EU to review its approach which has ... [more ▼]

Cybersecurity regulation in the EU has long been implemented in a piece- meal fashion resulting in a fragmented regulatory landscape. Recent developments triggered the EU to review its approach which has not resulted in the envisaged high level of cyber resilience across the Union. The paper addresses the EU’s limited mandate to regulate cybersecurity and outlines how the internal market rationale serves as a basis to harmonise cybersecurity legislation in the EU Member States. In that regard, the recent Proposal for a NIS 2.0 Directive (adopted by the European Parliament in November 2022) and the Proposal for a Cyber Resilience Act (published in September 2022) highlight how the EU seeks to align legislation and reduce complexity between different, often sectoral regulatory approaches to cybersecurity, while at the same time extending regulation in a view to achieve a high level of cybersecurity across the EU. As regards the latter, the paper also outlines how the Cyber Resilience Act will complement the NIS 2.0 Directive in order to close existing regulatory gaps. [less ▲]

Detailed reference viewed: 100 (3 UL)
Full Text
Peer Reviewed
See detailEDPB Adopts updated Guidelines on Personal Data Breach Notification under GDPR: The End of the One-Stop-Shop Reporting Mechanism for Non-EU Establishments
Schmitz, Sandra UL

in European Data Protection Law Review (2022), 8(4), 517-520

Detailed reference viewed: 26 (0 UL)
Full Text
Peer Reviewed
See detailOne step ahead: mapping the Italian and German cybersecurity laws against the proposal for a NIS2 directive
Schmitz, Sandra UL; Chiara, Pier Giorgio UL

in International Cybersecurity Law Review (2022)

With the COVID-19 pandemic accelerating digital transformation of the Single Market, the European Commission also speeded up the review of the first piece of European Union (EU)-wide cybersecurity ... [more ▼]

With the COVID-19 pandemic accelerating digital transformation of the Single Market, the European Commission also speeded up the review of the first piece of European Union (EU)-wide cybersecurity legislation, the NIS Directive. Originally foreseen for May 2021, the Commission presented the review as early as December 2020 together with a Proposal for a NIS2 Directive. Almost in parallel, some Member States strengthened (or adopted) national laws beyond the scope of the NIS Directive to respond adequately to the fast-paced digital threat landscape. Against this backdrop, the article investigates the national interventions in the field of cybersecurity recently adopted by Italy and Germany. In order to identify similarities and divergences of the Italian and German national frameworks with the European Commission’s Proposal for a NIS2 Directive, the analysis will focus on selected aspects extrapolated from the Commission Proposal, namely: i) the enlarged scope; ii) detailed cybersecurity risk-management measures; iii) more stringent supervisory measures; and, iv) stricter enforcement requirements, including harmonised sanctions across the EU. The article concludes that the national cybersecurity legal frameworks under scrutiny already match the core of the proposed changes envisaged by the NIS2 Proposal. [less ▲]

Detailed reference viewed: 56 (5 UL)
See detailIf there’s something strange in your [cyber]hood – who you gonna call?
Schmitz, Sandra UL

Scientific Conference (2022, July 07)

Detailed reference viewed: 34 (1 UL)
See detailA Cybersecurity Incident: Who You Gonna Call?
Schmitz, Sandra UL

Scientific Conference (2022, May 25)

Detailed reference viewed: 39 (1 UL)
See detailThe NIS 2.0 Directive - Lessons learnt or lagging behind? A legal perspective
Schmitz, Sandra UL

Scientific Conference (2022, May 10)

Detailed reference viewed: 189 (0 UL)
Full Text
Peer Reviewed
See detailEvery Student Can Learn, Just not on the Same Day: An Analysis of Data Protection and Cybersecurity Challenges for E-Learning Platforms in the COVID19 Crisis
Schmitz, Sandra UL

in European Journal of Law and Technology (2022), 13(1),

Detailed reference viewed: 42 (2 UL)
See detailTo Report, or Not To Report, that Is the Question! The Struggle in Determining a Report-Worthy Cybersecurity Incident
Schmitz, Sandra UL

Presentation (2022, April 13)

Detailed reference viewed: 34 (1 UL)
See detailTo Report, or Not to Report, that Is the Question! The Struggle in Determining a Report-Worthy Cyber Incident
Schmitz, Sandra UL

Scientific Conference (2022, April 13)

Detailed reference viewed: 27 (2 UL)
Full Text
Peer Reviewed
See detailConceptualising the Legal Notion of ‘State of the Art’ in the Context of IT Security
Schmitz, Sandra UL

in Friedewald, Michael; Krenn, Stephan; Schiffner, Stefan (Eds.) et al Privacy and Identity Management. Between Data Protection and Security (2022, March 31)

Detailed reference viewed: 42 (2 UL)
See detailSMART: a Technology Readiness Methodology in the Frame of the NIS Directive
Kumari, Archana; Schiffner, Stefan; Schmitz, Sandra UL

E-print/Working paper (2022)

Detailed reference viewed: 12 (0 UL)
See detailThe NIS2 Directive is on its way
Schmitz, Sandra UL

Presentation (2021, December 01)

Detailed reference viewed: 71 (0 UL)
Full Text
Peer Reviewed
See detailCybersecurity is Gaining Momentum – NIS 2.0 Is on its Way
Schmitz, Sandra UL

in European Data Protection Law Review (2021), (4), 580-585

Detailed reference viewed: 63 (3 UL)
See detailCybersecurity, the AI Act and the 'State of the Art'
Schmitz, Sandra UL

Presentation (2021, November 12)

Detailed reference viewed: 41 (0 UL)
Full Text
See detailWenn Sicherheitsinteressen kollidieren – Technische und rechtliche Implikationen einer verpflichtenden Zugriffsmöglichkeit auf verschlüsselte Daten durch Behörden
Schmitz, Sandra UL; Schiffner, Stefan

E-print/Working paper (2021)

Detailed reference viewed: 46 (2 UL)
See detail“Every Student Can Learn, just not on the same Day” -Data Protection and Cybersecurity Challenges for E-Learning Platforms
Schmitz, Sandra UL; Schiffner, Stefan UL

Presentation (2021, April 14)

When George Evans stated that every student can learn, just not on the same day, he had probably not in mind the despair of pupils trying to access an e-learning platform during a national lockdown period ... [more ▼]

When George Evans stated that every student can learn, just not on the same day, he had probably not in mind the despair of pupils trying to access an e-learning platform during a national lockdown period. With the COVID19 crisis, online learning became an everyday commodity almost overnight; however, not all schools were prepared to swiftly switch from in class to remote teaching. Concerns were raised with regard to data protection and cyber security, which in some cases led to the implementation of “home-made” solutions. Taking the example of the federalist state of Germany, where education is within the sole competence of the Länder, this paper will explore the functioning and technical implementation of a variety of e-learning platforms before data protection concerns are addressed. We will then explore whether the NIS Directive, which foresees similar security requirements as the GDPR, is applicable to the diverse models, and outline the consequences. In light of the acceleration of the revision of the NIS Directive due to the COVID-19 crisis, we take the example of learning platforms to outline the flaws of the 2016 Directive before we critically evaluate selected aspects of the NIS 2.0 proposal of December 2020. [less ▲]

Detailed reference viewed: 119 (3 UL)
Full Text
See detailStudy to support the review of Directive (EU) 2016/1148 concerning measures for a high common level of security of network and information systems across the Union (NIS Directive), No. 2020-665
Adami, Monica; Bachmaier, Patricia; Barbizan, Thiago et al

Report (2021)

Detailed reference viewed: 57 (5 UL)
Full Text
Peer Reviewed
See detailResponsible Vulnerability Disclosure under the NIS 2.0 Proposal
Schmitz, Sandra UL; Schiffner, Stefan UL

in Journal of Intellectual Property, Information Technology and E-Commerce Law (2021), 12(5),

Detailed reference viewed: 30 (4 UL)
Full Text
Peer Reviewed
See detailDon’t Tell Them now (or at all) – Responsible Disclosure of Security Incidents under NIS Directive and GDPR
Schmitz, Sandra UL; Schiffner, Stefan UL

in International Review of Law, Computers and Technology (2021), 35(2),

Detailed reference viewed: 135 (6 UL)