Breach Incident Management and Reporting
A breach of privacy is considered inappropriate use or disclosure of personal data. Numerous laws regulate what constitutes a breach and the legal obligations if there is a breach. This course will examine: (a) what constitutes a "breach" or "incident" under a variety of scenarios and industries, (b) what legal obligations regulated entities have to act on a breach or incident, (c) what liabilities in tort or contract may exist as the result of breaches, (d) corrective actions to manage breaches and minimize recurrence, (e) electronic security measures to minimize breaches and incidents, (f) a survey of the most common cyberattacks for students to gain familiarity with trends in electronic breaches, and (g) practice in drafting notices, incident reports, and corrective actions.