Tag:data security breaches

1
Connecticut Mandates Identity Theft Services for SSN Data Breaches
2
Developments in Cybersecurity Law Governing the Investment Industry

Connecticut Mandates Identity Theft Services for SSN Data Breaches

By: Holly K. Towle

On June 30, 2015, Connecticut’s governor signed into law an amendment to the state’s data-security-breach-notice statute to mandate “appropriate” identity theft prevention services for breaches involving social security numbers. Identity theft mitigation services are also required “if applicable” (e.g., if identify theft actually occurs). The services must be provided at no cost and for at least 12 months. The statute does not explain which identity theft “prevention” or “mitigation” services are mandated or which are “appropriate.”

Read More

Developments in Cybersecurity Law Governing the Investment Industry

By: Luke T. Cadigan, Sean P. Mahoney

The Investment Lawyer, Vol.21, No. 8, August 2014
Reprinted with Permission

Regulatory focus on cybersecurity is intensifying. Unlike other compliance matters, the deterrent effect of enforcement actions following data security breaches may be insufficient to achieve regulators’ purpose of ensuring that technology platforms are secure before an event occurs. Thus, in the area of cybersecurity, regulators appear to be shunning granular, prescriptive rules and instead insisting upon more holistic management of cybersecurity risk. Read More

Copyright © 2023, K&L Gates LLP. All Rights Reserved.