What Can Happen if You Do Not Notify Following a Data Breach?

Here is one of the questions we get asked most often: “Ok, so we’ve had a real data breach and you say we have clear notification obligations, what can happen if we just ignore it and pretend it never happened — that is, we just don’t notify?” Unfortunately, this question is oftentimes coupled with this … Continue reading What Can Happen if You Do Not Notify Following a Data Breach?

Texas Bar Journal 2019 Cybersecurity & Data Privacy Update

The Texas Bar Journal’s 2019 year-end Cybersecurity & Data Privacy Update was once again provided by Shawn Tuma and addressed the following issues: Texas' New Data Breach Notification Requirements effective January 1, 2020Whether website scraping allegations are sufficient to invoke Texas and federal "hacking" lawsWhether viewing pictures on another's cellphone violates Texas "hacking" lawCyber Insurance -- why … Continue reading Texas Bar Journal 2019 Cybersecurity & Data Privacy Update

Cyber Insurance Becoming a Necessity, No Longer a Luxury for Prepared Companies (publication)

Many thanks to CPO Magazine for publishing my recent article Cyber Insurance Becoming a Necessity, No Longer a Luxury for Prepared Companies. In reality, there is no “secure” — even when the best security measures are taken. When hackers want to get in and disrupt a business, they will. Companies must be resilient, and the … Continue reading Cyber Insurance Becoming a Necessity, No Longer a Luxury for Prepared Companies (publication)

Ransomware is the single greatest risk your company faces – here’s why

You read that correctly: ransomware is the single greatest risk to your company. Even in times of the COVID-19 global pandemic, ransomware is still the one risk where, tonight, the company CEO can lay her head down on her pillow with the company doing fine, profits up and operations running smoothly, and then wake up … Continue reading Ransomware is the single greatest risk your company faces – here’s why

Explaining Third Party Cyber Risk and the Role of Contracts to Business Lawyers

This morning I am in Austin, TX about to speak to a room full of business lawyers about the importance of understanding and managing third party cyber risk and the role that contracts have in this process. I recognize that they are not aspiring to be cyber or privacy lawyers and have plenty to keep … Continue reading Explaining Third Party Cyber Risk and the Role of Contracts to Business Lawyers