DIRECTORS SERVE AN ESSENTIAL ROLE IN DATA SECURITY


On April 28, 2021, Federal Trade Commission (“FTC”) staff published a blog post entitled “Corporate boards: don’t underestimate your role in data security oversight.”  While data security threats are not new, the FTC states that it is “essential for corporate boards to do what they can to ensure that consumer and employee data is protected.”  The FTC’s post also notes that in the first half of 2020, over 36 billion online records were exposed.

The FTC further provides five “common-sense recommendations” for boards:

1.    Ensure that data security is a priority.  “[D]ata security begins with the Board of Directors, not the IT Department.”  As such, the FTC recommends that directors prioritize data security through board-level oversight and regular security briefings.

2.    Recognize the specific cybersecurity risks and challenges faced by your company.  Although the day-to-day management of a company’s cybersecurity operations may not lie with the board, directors should understand the challenges faced by their company and “set priorities and allocate the resources necessary to ensure effective security.”

3.    Legal compliance does not equal security.  According to the FTC, “compliance doesn’t necessarily translate into good security.”  A company’s data security program should not be geared towards simply meeting compliance obligations.

4.    Prevention should not be the only goal.  Directors must realize that “no data security program is perfect and no program can guarantee that a company will be protected from attack or a data breach.”  As such, company directors should implement policies that not only seek to prevent data security incidents, but also provide effective response in the event of a security incident.

5.    Address and learn from mistakes.  Should a data security incident occur, directors should use the event to learn and improve the company’s data security program.  Also, “learning from other companies’ mistakes can be just as valuable.”

Data security should be a top concern of directors.  As threats continue to evolve, directors must be prepared to respond and recognize that their board serves an essential role in data security.
 

About Faruqi & Faruqi, LLP

Faruqi & Faruqi, LLP focuses on complex civil litigation, including securities, antitrust, wage and hour, personal injury and consumer class actions as well as shareholder derivative and merger and transactional litigation. The firm is headquartered in New York, and maintains offices in California, Delaware, Georgia and Pennsylvania.

Since its founding in 1995, Faruqi & Faruqi, LLP has served as lead or co-lead counsel in numerous high-profile cases which ultimately provided significant recoveries to investors, direct purchasers, consumers and employees.

To schedule a free consultation with our attorneys and to learn more about your legal rights, call our offices today at (877) 247-4292 or (212) 983-9330.

About Christopher M. Lash

Christopher M. Lash's practice is focused on shareholder derivative and securities litigation. Chris is an Associate in the firm's Pennsylvania office.

Tags: faruqi & faruqi, investigation, news, litigation, settlement notice, case, faruqi law, faruqi blog, faruqilaw, Christopher Lash, derivative litigation Christopher M. Lash Christopher M. Lash
Associate at Faruqi & Faruqi, LLP

Pennsylvania office
Tel: (215) 277-5770
Fax: (215) 277-5771
E-mail: clash@faruqilaw.com
Social: LinkedIn

Finding us

Our Offices


Our offices are nationwide. If you have any questions about a case or our firm, please contact us.

New York

685 Third Avenue 26th Floor
New York, New York 10017
(212) 983-9330
(877) 247-4292
(212) 983-9331

California

10866 Wilshire Boulevard Suite 1470
Los Angeles, California 90024
(424) 256-2884
(424) 256-2885

Delaware

3828 Kennett Pike Suite 201
Wilmington, Delaware 19807
(302) 482-3182
(302) 482-3612

Georgia

3975 Roswell Rd Suite A
Atlanta, Georgia 30342
(404) 847-0617
(404) 506-9534

Pennsylvania

1617 JFK Boulevard, Suite 1550
Philadelphia, Pennsylvania 19103
(215) 277-5770
(215) 277-5771

Faruqi & Faruqi office in New York, New York

Faruqi & Faruqi office in Los Angeles, California

Faruqi & Faruqi office in Wilmington, Delaware

Faruqi & Faruqi office in Atlanta, Georgia

Faruqi & Faruqi office in Philadelphia, Pennsylvania