With nearly every company being vulnerable to data security breaches, distributed denial of service (DDoS) and other cyber-attacks, KJK’s CyberSecurity & Internet Privacy team assists in identifying and addressing information security risks for our clients.
Cyber incidents are growing in frequency and severity and regulators around the world have implemented changes in laws or regulations to address these heightened risks. There is an evolving body of laws and regulations that relate to the collection, storage, protection and use of electronic data (“CyberLaw”). For example the U.S. Securities and Exchange Commission (SEC) Division of Corporation Finance issued guidance on CyberSecurity disclosures under the federal securities laws and advised that companies “should review, on an ongoing basis, the adequacy of their disclosure relating to CyberSecurity risks and cyber incidents” and that appropriate disclosures may include, a “[d]escription of relevant insurance coverage.” Amidst increased exposure to such risks, companies need assistance in handling security breaches and preventing future CyberSecurity threats.
Our team can perform a preliminary assessment with our clients to identify their potential legal exposure by drafting internal policies and procedures and contractual provisions regarding discovery, investigation, remediation and reporting of breaches.
Our CyberSecurity & Internet Privacy team can assists clients with:
- Performing a global review of internet privacy and cyber security issues that specifically relate to your business
- Reviewing your existing response plans and procedures in respect of how you would handle a data breach or assist you in implement a response plan
- Reviewing your standard terms and conditions of sale or purchase with respect to warranties and indemnification that may, in part, protect you from CyberLaw risks
- Reviewing your payment and procurement policies and procedures for CyberLaw risks
- Assisting with respect to electronic discovery in the context of litigation
- Litigating data security breach actions