Partnerblog

Cybersecurity Insights for Company Lawyers: Should You Tell Anyone That You Have Been Hacked?

In our previous blog, we reminded company lawyers that controllers should notify the competent data protection authority (DPA) without undue delay and, where feasible, not later than 72 hours after becoming aware of a personal data breach, unless the breach is unlikely to result in a risk to the rights and freedoms of the affected individuals (the “data subjects”).

Read MoreCybersecurity Insights for Company Lawyers: Should You Tell Anyone That You Have Been Hacked?