Data Breach Combat: How Companies are Changing their Privacy Policies

FACING INEVITABLE DATA BREACHES AND NEW PRIVACY LAWS, COMPANIES SHIFT FOCUS TO RESPONSE

MARCH 4, 2019 By Tyler Sonnemaker

Medill Reports

Companies, cybersecurity professionals, and policymakers alike have started paying more attention to how breach victims respond to an incident.

“Companies are recognizing that they need to be prompt in disclosing the breaches,” said Michelle Cohen, a partner at Ifrah Law and chair of its privacy and data security practice. They must be “transparent with consumers and regulators regarding what happened, what may have been compromised and what the company is offering to do to remedy the situation,” Cohen added.

Each incident is unique, from the laws governing the organization involved to the type of information compromised. But this shift in thinking means consumers and regulators must look to new metrics — such as how long it takes a company to both discover and disclose a breach.

To read the full article, click the READ MORE link below