Business Data Breach

  • #1

Jeff97

92
5
If a company has a data breach what are the privacy/legal and ethical factors that the business has to take into consideration?
Researching I've seen that most laws require disclosure of the data breach if it contains personal information. EU laws are the most strict. Failure to disclose presents a huge legal problem and the business will face fines. Not telling your customer also seems very wrong, letting them carry on thinking nothing is wrong.

edit: Let's for context's sake say that the example is a Big Company(XYZ) - and they've just had a data breach exposing login details (passwd/username)
 
Last edited:

Answers and Replies

  • #2
That seems like a pretty broad question, muchly dependent on the industry the business in in.

For example, a hospital, with patient records, has unique problems.
 
  • Like
Likes Jeff97 and phinds
  • #3
DaveC426913 said:
That seems like a pretty broad question, muchly dependent on the industry the business in in.

For example, a hospital, with patient records, has unique problems.
Fair point. Let's for context's sake say that the example is a Big Company(XYZ) - and they've just had a data breach exposing login details (passwd/username). And then apply my original question- what are the privacy/legal and ethical factors that the business has to take into consideration?
 
  • #4
Even though this is not in the homework section, I'd say the same rules are appropriate. We are obliged not to straight up answer questions that the OP has not first attempted to answer on their own first.

What has your research to-date indicated?
 
  • Like
Likes Oldman too
  • #5
Yes there are legal requirements. Some of them have time limits, such as 72 hours, to disclose. Instead of asking strangers on the Internet who don't even know where you live and which laws apply, go as fast as your feet will take you to a local lawyer.

Besides, we can't sit here on Physics Forums giving out legal requests.
 
  • #6
anorlunda said:
Yes there are legal requirements. Some of them have time limits, such as 72 hours, to disclose. Instead of asking strangers on the Internet who don't even know where you live and which laws apply, go as fast as your feet will take you to a local lawyer.

Besides, we can't sit here on Physics Forums giving out legal requests.
I am aware there are legal requirements. A few other regulations abide by the 72 hours rule, such as GDPR.
The term "forum" refers to a meeting or medium in which ideas and views about any particular topic are exchanged.

The purpose of this post isn't to give legal advice, but to facilitate a discussion around the particular topic, which in hindsight was the wrong decision on my part. I will take this somewhere else. Thanks
 
  • #7
And on that note we can close the thread
 

Suggested for: Business Data Breach

Opinions about the usefulness or otherwise of data synching services
Replies
6
Views
443
Data transfer from MS Excel to PSPP
Replies
16
Views
1K
Computing for Dummies Q: What is difference between server and data center?
Replies
16
Views
936
Steganographic Data File Searches
Replies
15
Views
1K
Boffins use nuclear radiation to send data wirelessly
Replies
1
Views
699
Impressive Video Data Compression
Replies
1
Views
708
What is a data lake?
Replies
3
Views
651
Cellular or smartphone calls / texts / data when on a moving train
Replies
11
Views
505
Backing up Phone data
Replies
23
Views
2K
Tablet charging problem and data recovery
Replies
6
Views
882

Hot Threads

Recent Insights

Back
Top