Data Breach And Incident Response Lawyer

Steady Counsel

At A Time Of Confusion & Uncertainty

The threat posed to organizations of all types and sizes from data breaches and other cybersecurity events is unprecedented and, by all accounts, only set to increase. Whether the threat emanates from a for-profit hacking group engaged in ransomware activity or a nation-state actor seeking valuable intelligence, the threat vectors come from practically all sides. The reality is that “it is a question of when, not if.” 

Once hit with a data breach or cybersecurity event, the fallout to a business can be immense. Compliance post-breach can be complex and overwhelming due to the cost of complying with the patchwork breach notification regimes on the state level (such as the CCPA as amended by the CPRA), federal level (such as HIPAA), and international regulatory authorities (such as the GDPR). Failure to comply with relevant legal obligations can result in hefty fines. Further, strategically protecting the organization, including the attorney-client privilege, is critical. For example, maintaining the confidentiality of subject matter experts’ analysis of security posture pre-breach and the extent of the incident can be pivotal in limiting the cost of a cyber incident, including as it relates to post-breach private action. 

At RICHT, we focus on helping clients navigate the confusing web of laws that come into play in a data breach or cyber event, stressing mitigation and protecting client interests. Specifically, our services include pre-planning such as tabletop exercises (TTXs) and counseling clients in real-time experiencing a breach with technical experts under our RICHT&Co. offering. 

Data Breach & Incident Response News