New rules published on Monday by the European Commission would ensure that data breaches like that get disclosed within 24 hours of the breach. The new rules would do that if, in fact, they pertain to companies that arent telecoms or ISPs but who still hold vast stores of customer data. Such companies might yet get rolled into the same requirements. The EC is encouraging companies to adopt approved encryption, which would remove the customer-notification requirement for those whove implemented protection.”]
Source: https://nakedsecurity.sophos.com/2013/06/25/europeans-to-get-told-about-data-breaches-sometimes/