The Dutch province of South Holland must draw up an action plan on how to improve cybersecurity within the province. A motion to this effect by JA21 was unanimously adopted by the Provincial Council of South Holland.
State member Luuk Wilson of JA21 submitted the motion and pointed to the accountant's report on the 2023 annual accounts. In it the accountant indicated that significant steps still need to be taken in the field of information security. The Member of Parliament emphasizes that cyber threats are increasing and that it is 'crucial that the information systems and associated security measures are up-to-date and effective'. If this does not happen, it could lead to 'serious consequences for the integrity and reliability of the data and services provided to residents'. Wilson therefore calls in the motion for the drawing up of a detailed action plan with clear milestones and deadlines for improving cybersecurity. He also wants regular reporting on the progress of implementation and the effectiveness of the measures taken. He further calls for training and education for all employees to promote awareness and compliance with new procedures and policies. The members of the Provincial Council unanimously adopted the motion.
In September last year, the province of South Holland suffered a data breach in an internal system used for archiving, storage and internal collaboration on documents. . As a result, the province is under the supervision of the Dutch Data Protection Authority, it was announced in April this year. The province makes concrete agreements with the AP about how it can handle personal data more carefully and must report on this regularly to the AP.