Checklists
Ten Key Items to Strengthen Preparedness for Data Incident Response
Learn ten tips for in-house lawyers on how they can help their organization prepare for responding to potential data breaches and incidents.
Learn ten tips for in-house lawyers on how they can help their organization prepare for responding to potential data breaches and incidents.
This quick reference guide provides information related to data breach notification laws. It includes a list of data breach reporting deadlines for state and federal agencies.
This is a sample letter for notifying individuals that their personal information may have been subject to unauthorized access or disclosure as the result of a data breach.
This is sample tool helping organizations assess whether a security incident involving personal information would require notification under the HIPAA breach notification rule (under the US Health Insurance Portability and Accountability Act).
The threat of ransomware attacks and their potential damage on organizations continues. This checklist includes steps organizations can take to minimize the likelihood and the effects of a successful attack.
This sample can be used to obtain consent to use an employee's name, image, or testimonial for a specific purpose.
Gain a baseline understanding of cybersecurity strategies. Learn tips on strengthening your organization's cybersecurity practices, training employees, preparing for data breaches, evaluating insurance policies, responding to cyber incidents, and addressing cybersecurity in contracts.
This article with its sample delegation of authority (DOA) form will assist in-house counsel who are struggling with issues related to signing authority, staff approval limits, and information passing.
In development or update of a records program it may appear that once a company has its policies and processes, roadmap, tools, and technology in place, some may believe they are done. However, here is still a critical task remaining: employee behavior change management.
Organization’s records retention schedules need to be synchronized with assurance current and emerging privacy laws . Records retention laws and regulations may require companies to retain records for a certain number of years, driven by literally thousands of record retention regulations. These requirements may override consumer deletion requests of their personal information.