Defining, Implementing and Documenting “Reasonable Security”

The implementation of “reasonable security” measures is a critical defense to litigation and regulatory action under the CCPA and other privacy regimes in the event of a data breach. This article covers what constitutes reasonable security, how organizations and their counsel can implement it (including cost-effective security measures) and – critically – how they can document it. “Show me, don’t just tell me,” said Kimberly Peretti, Alston & Bird partner and former DOJ prosecutor, during a recent Alston & Bird seminar on these points, which also featured partner Amy S. Mushahwar and senior associate Katherine Doty Hanniford. See “How to Stem the Coming Tide of CCPA Private Litigation” (Jan. 22, 2020).

To read the full article

Continue reading your article with a CSLR subscription.