This article states that although the Securities and Exchange Commission doesn't require companies to disclose cybersecurity risks and incidents, companies should establish a disclosure framework in light of the SEC's cybersecurity guidance.
Members-only access
To access the full resource, you must be a member. Already a member? Login to unlock.
Login
Not an ACC member?
Gain access to a comprehensive collection of global resources for in-house counsel
Sign up for a 30-day trial
Region:
United States
The information in any resource collected in this virtual library should not be construed as legal advice or legal opinion on specific facts and should not be considered representative of the views of its authors, its sponsors, and/or ACC. These resources are not intended as a definitive statement on the subject addressed. Rather, they are intended to serve as a tool providing practical advice and references for the busy in-house practitioner and other readers.