Victoria Hudgins reports:
While federal lawmakers might be hesitant to enact national data privacy legislation, some states are quickly moving to define reasonable cybersecurity—and protect those that adhere to them. But even as legislators extend “safe harbor” protections to encourage cybersecurity, lawyers noted some companies might ignore the incentive to avoid burdensome responsibilities.
For companies that are already compliant with some federal standards such as HIPAA or NIST, this is not a particularly burdensome, but what about for companies that are not already in compliance with some federal or state standards?
Read more on Law.com (registration required).