This sample policy lists a series of law firm cybersecurity obligations that companies and their in-house counsel may consider requiring from outside counsel.
This is a sample written information security policy to create effective administrative, technical and physical safeguards for the protection of personal information.
In this article, learn the more material changes brought about by the GDPR (those likely to have a bigger impact), comments on the likely impact of the proposal on businesses, and suggests action points that businesses can begin to address in the lead-up to the measure coming into force.
Data breaches and cyberattacks threaten every company's brand, and bottom line, both in the United States and around the world. This brief article offers key tips on what the technology means and how to ensure your company is taking the proper actions to protect your company. This list also includes a glossary of essential technology terms with basic definitions for non-experts.
This resource presents ten key considerations about developing an effective Document Retention Policy (DRP) that can be used in the United States.
Considering the increasingly active role general counsel play in cybersecurity strategy, risk assessment and prevention, the ACC Foundation recently released an unprecedented study of the state of cybersecurity in the corporate sector. The largest study of its kind, the report serves as a resource for in-house lawyers, corporations and boards of directors directly impacted by one of the greatest challenges and reputational risks facing companies today. This plenary session will provide key takeaways from the report that you can put into action today, as well as guidance on preserving privilege, budget allocation and collaborating with law enforcement or government agencies. Learn what general counsel experienced in data breaches wish they had known before the breach occurred and other important lessons learned.
This Quick Overview discusses how businesses must be prepared to handle the risks and consequences of storing large quantities of customer and client personal information digitally in the United States.
Discuss recent developments in the global regulatory landscape that impact cybersecurity compliance in the financial industry, and the sources of authority or reference for defining legal standards in this domain. Review regulatory guidance that both identifies and raises questions on what is enough to satisfy an organization’s responsibilities to customers, employees, business partners and other stakeholders with respect to cybersecurity. Identify best practices for effective implementation of cybersecurity measures. Explore how a multinational financial institution can structure its cybersecurity program at the enterprise level without running afoul of foreign jurisdictions’ regulators. Review the state of play in civil litigation over data breaches, including plaintiff strategies for overcoming motions to dismiss based on inadequate pleadings or standing. Discuss recent settlements of major data breach class actions and their impact on future cases.
This Top Ten article lists common information security gaps counsel should understand and address with business leadership.
It is no secret that data breaches, and lawsuits over data breaches, are on the rise. This brief resource provides 10 practical insights on the steps a legal department should take when faced with a data breach.