On January 30, 2024, a Korean legislator introduced a bill titled “the Bill on Management and Support for Stability of Digital Services” (the “Bill”) to the National Assembly for deliberation.
The Bill aims to integrate the various obligations for stable digital services that are currently scattered across different Korean statutes, namely, the Broadcasting Development Act, Network Act, and Telecommunications Business Act (“TBA”). In addition, the Bill strengthens the sanctions against violations and imposes new obligations. For example, under the Bill:
-
A penalty surcharge will be imposed for failure to submit a “disaster management plan” (“Management Plan”) or comply with an order to supplement it;
-
“Major digital service providers” (“Major Service Providers”) must prepare and release an annual service stability report; and
-
Measures to prevent and respond to disasters or service failures will be required.
Below is a key summary of the Bill.
Definition of Major Service Providers
Under the Bill, Major Service Providers include facilities-based telecommunications service providers (“FSPs”), data center operators, and value-added telecommunications service providers (“VSPs”) exceeding a certain size. More specific criteria will be set forth in the Presidential Decree, which will supplement the Bill if passed. Therefore, the range of Major Service Providers regulated under the Bill could expand.
Obligations of Major Service Providers
1. |
Establish a Management Plan and Implementation Plan |
-
(i) The Bill specifies the items to be included in a Management Plan (e.g., matters related to processing user requests and user protection measures).
-
(ii) The Bill requires reports on the status and related information regarding the implementation of the Management Plan.
-
(iii) The MSIT may impose a penalty surcharge against a Major Service Provider that fails to submit a Management Plan, comply with any order to supplement it, or comply with any corrective order following an inspection on the implementation status.
-
(iv) To minimize redundant enforcement, the MSIT may waive inspection of certain items in the Management Plan that have already been inspected or evaluated and confirmed.
2. |
Designate a Domestic Agent |
3. |
Prepare and Release Service Stability Reports |
4. |
Measures to Prevent and Respond to Disasters or Service Failures |
5. |
Other Obligations |
-
FSPs and data center operators that qualify as Major Service Providers must self-rate their facilities based on potential impact on public interest in the event of a disaster/service failure: After reviewing the self-ratings, the MSIT will assign its own rating to the facilities considering the facilities’ importance to public interest.
-
Designate a stability control manager: Major Service Providers must designate a stability control manager and if their sales exceed a certain threshold (to be set in the Presidential Decree), operate a team dedicated to managing the stability of digital services.
Additional Obligation of Data Center Tenants
Similar to the Network Act, the Bill imposes obligations on certain data center tenants. Specifically, if a data center tenant possesses exclusive control and operation of the leased facilities, the tenant bears the obligations of implementing the data center operator’s Management Plan and reporting of any disaster/service failure that may occur at the facilities. Also, the Bill allows the MSIT to request materials from and inspect the data center tenant’s premises to check the Management Plan implementation status.
Outlook
Since early 2023, the MSIT had announced plans to integrate the various statutory obligations for stable digital services. As the Bill mainly consolidates existing obligations and regulations, it is possible that the National Assembly will consider and pass it relatively quickly. We recommend close monitoring, and as necessary, prompt legislative advocacy.