When it comes to data security, most of the focus has been on being PCI compliant. In the past few years, data security has been identified as a “matter of national security” and state and federal government have implemented laws targeting the security of consumer data, with some going well beyond the standards set by PCI. With the rash of well-publicized breaches, civil litigation has also become a key threat to the retailer suffering a breach. This session will identify the key legislation and standards (state and federal) that threaten to make data security a “patchwork” of local laws, will provide a survey of civil litigation and present key steps the retailer can take to reduce their exposure to legal risk.
- Have breaches ended?
- The federal, state and incident response to data security
- Liabilities that you want to avoid