EU, information security, cybersecurity, disinformation, cooperation


Information security system that has developed within the modern world order is one of the "pillars" of international stability. Threats to information security are considered in the context of a system of threats to international security. Since international security is a kind of framework for maintaining the stability of the world order in general, its formation and consolidation is an essential condition of human existence. The EU information security concept leads to a searching common solutions to counter information and communication threats, defines security institutions' priorities for developing a common strategy for European information security, countering cyberwarfare, information terrorism and combating information crime. The EU has always given priority to the protection of privacy and personal data. A number of initiatives of the European Union are aimed at creating an appropriate legal framework and establishing institutional and organizational mechanisms for ensuring information security. Cybersecurity is also one of the priority areas that is regulated and governed within the EU. The article is devoted to the analysis of the EU activity on the creation of a system for counteracting information threats, to the research of protection mechanisms, international co-operation and organizational and legal aspects of information security.

Author Biography


Ph.D., Associated professor of the Chair of International Information of the Institute of International Relations, Taras Shevchenko National University of Kyiv, Paper presented during the 3rd edition of the conference ”European Union – Crisis and Borders in XXI Century”(17 May 2019), held at Alexandru Ioan Cuza University of Iași.


EU data protection rules (2018), European Comission,

A Europe that Protects: Countering Hybrid Threats (2018). European Union External Action,

Action Plan against Disinformation (2018). Joint Communication to the European Parliament, the European Council, the Council, the European Economic and Social Committee and the Committee of the Regions: Action Plan against Disinformation (JOIN(2018) 36 final),

Commission Regulation 611/2013 on the measures applicable to the notification of personal data breaches under Directive 2002/58/EC of the European Parliament and of the Council on privacy and electronic communications of 24 June 2013,

A. Arnbak (2014). Any Colour You Like: the History (and Future?) of E.U. Communications Security Policy, Institute for Information Law, University of Amsterdam,

Communication from the European Commission: "Network and Information Security: Proposal for a European Policy Approach" (COM (2001) 298 (June 6, 2001),

Communication on a Cybersecurity Strategy of the European Union – An Open, Safe and Secure Cyberspace (2013).

Council Decision of 31 March 1992 in the field of security of information systems 92/242/EEC, OJ L 123/19, 8 May 1992.

Council of Europe Convention on Cybercrime, CETS 185, Budapest 31 Nov. 2001, see The Cybercrime Convention came into force in 2004.

Directive 1997/66/EC, OJ L 24, 30 Jan. 1998. Note that this Directive traces back to a 1990 Commission proposal for a Council Directive in COM (1990) 314 final, SYN 299, p. 71.

Directive 95/46/EC (‘Data Protection Directive’), OJ L 281, 23 Nov. 1995.

EU policy cycle – EMPACT,

European standardization,

Explanatory Memorandum, European Commission, Amended proposal, COM (2008)723 final.

Live Cyber Attack Threat Map | Check Point Software. (2019). Retrieved from

Makarenko, E.,  Ruzhkov, M. (2016). International Information Security: Theory and Practice. K.: Free Press Center

Pearse, R.,  Paddy, D., (2016). EU Network and Information Security Directive,

Tackling online disinformation (2018). European Commission - Fact Sheet.

Treaty on the Functioning of the European Union, Art. 4(2), OJ C 326, 26 Oct. 2012.