EPIC Comments on SEC Cybersecurity Audit and Breach Notification NPRMs

SEC Requires Cybersecurity Incident and Oversight Disclosures

Last week the Securities and Exchange Commission adopted rules requiring public companies to notify shareholders of any "material" cybersecurity incident within four business days of determining that the incident rises to that level.

Cybersecurity
Data Security
Updates

EPIC Urges SEC to Interpret Harm Broadly in Breach Notifications Rule

EPIC filed a letter comment supporting the SEC's data breach notification and audit requirements, but called on the agency to expand its definition of harms that would trigger breach notifications.

Cybersecurity
Data Security
Updates

EPIC Comments on SEC Cybersecurity Audit and Breach Notification NPRMs

Cybersecurity
Data Security
APA Comments

Securities & Exchange Commission

SEC Requires Cybersecurity Incident and Oversight Disclosures

EPIC Urges SEC to Interpret Harm Broadly in Breach Notifications Rule

EPIC Comments on SEC Cybersecurity Audit and Breach Notification NPRMs