CIVIL LIABILITY FOR CYBER HARM: INTERNATIONAL AND COMPARATIVE APPROACHES

Article Sidebar

PDF
Issue: Vol. 3 No. 6 Part 4 : Central Asian Journal of Academic Research
Section: Articles
Published:

Main Article Content

Master's student at Tashkent State Law University
yorkinovasangina@gmail.com

Abstract:

This article explores the evolving landscape of civil liability for cyber harm through international, comparative, and national lenses, focusing on developments from 2022 to 2025. It examines how legal systems are redefining responsibility in the digital age, with an emphasis on regulatory obligations, civil remedies, and conceptual innovations. International frameworks like the EU’s DORA, CRA, and NIS2, along with OECD recommendations, establish risk-based accountability for cyber resilience. Comparative analysis highlights diverse national approaches in Canada, the UK, Singapore, and others—ranging from statutory duties for platform safety to cybersecurity certification regimes. Uzbekistan’s legal transformation is presented as a dynamic case study of emerging liability models in developing jurisdictions. The article also integrates academic theories on digital harm, strict liability, digital fiduciaries, and hybrid regulatory models, revealing a shift toward proactive and preventive legal standards. This synthesis contributes to understanding how legal doctrine, regulatory design, and technology interact to shape a maturing civil liability regime for cyber risks worldwide.

Keywords:

Article Details

How to Cite:

Yorkinova , S. . (2025). CIVIL LIABILITY FOR CYBER HARM: INTERNATIONAL AND COMPARATIVE APPROACHES. Central Asian Journal of Academic Research, 3(6 Part 4), 60–70. Retrieved from https://in-academy.uz/index.php/cajar/article/view/56990

References:

European Union. (2022). Regulation (EU) 2022/2554 of 14 December 2022 on digital operational resilience for the financial sector (DORA). OJ L 333, p.1–79.

European Union. (2022). Directive (EU) 2022/2555 (NIS2) of 14 December 2022 on measures for a high common level of cybersecurity across the Union. OJ L 333, p.80–152.

European Commission. (2022). Proposal for a Cyber Resilience Act, COM(2022) 454 final. Brussels, Sept. 15, 2022.

OECD Council. (2022). Recommendation on Digital Security of Products and Services. OECD/LEGAL/0477, adopted 26 Sept 2022.

OECD. (2022). Good Practice Guidance on the Co-ordination of Digital Security Vulnerabilities. OECD Digital Economy Papers No. 324.

G20 Leaders. (2023). G20 New Delhi Leaders’ Declaration (Sept. 10, 2023), Article 46.

Financial Stability Board (FSB). (2023). Final Report: Achieving Greater Convergence in Cyber Incident Reporting. Basel, Oct. 2023.

Government of Canada. (2024). Bill C-63, Online Harms Act (1st Reading, 44th Parl.). Ottawa: Parliament of Canada.

Canadian Heritage. (2024). Backgrounder: Legislation to combat harmful content online (Feb. 26, 2024). Government of Canada News Release.

Government of Canada. (2022). Bill C-26, Critical Cyber Systems Protection Act (1st Reading, 44th Parl.). Ottawa.

Online Safety Act 2023 (UK), c.50.

Department for Digital, Culture, Media & Sport (UK). (2022). Online Safety Bill – Explanatory Notes. London.

Cybersecurity Act 2018 (Singapore) (Act 9 of 2018), amended by Cybersecurity (Amendment) Act 2024.

Monetary Authority of Singapore & Cyber Security Agency. (2025). Joint Response to The Straits Times Forum Letter on Third-Party Cybersecurity

Dentons Law Firm (Ulugbek Abdullaev). (2025, May 14). “Uzbekistan tightens cybersecurity obligations: What businesses need to know.” Dentons Insights.

Dentons Law Firm (Ulugbek Abdullaev). (2023, June 7). “Uzbekistan: Cybersecurity obligations for companies.” Dentons Insights.

Dentons Law Firm (Eldor Mannopov & Ulugbek Abdullaev). (2022, April 22). “Uzbekistan adopts cybersecurity law.” Dentons Insights.

Cooper, J. C., & Kobayashi, B. H. (2022). “Unreasonable: A Strict Liability Solution to the FTC’s Data Security Problem.” 28 Michigan Technology Law Review 257.

Famularo, J. (2023). “Platform-Related Harms.” Yale ISP Essays (Information Society Project).

Benthall, S. (2022). “For Safe AI Tomorrow, Fiduciary Duties for Big Tech Today.” Cornell Tech – Digital Life Initiative Blog.

Walters, R. (2023). “Cybersecurity, Data Governance and Directors’ Fiduciary Duty: An Expanding Obligation.” Australian Business Law Review, 2023(Dec).

Balkin, J. et al. (2019). “Information Fiduciaries and the First Amendment.” 49 UC Davis Law Review 1183.

Lior, A. (2023). “Innovating Liability: The Rise of Insurance in Cybersecurity Governance.” 25 Yale Journal of Law & Technology 448. (

Jordan, D. & Doshi, R. (2022). “The EU Digital Operational Resilience Act: A New Paradigm for Cybersecurity in Finance.” Journal of Cyber Policy 7(3), 429-445.

Cyber Peace Institute / UNIDIR. (2022). “Taxonomy of Cyber Harm.