Securities & Exchange Commission
-
SEC Requires Cybersecurity Incident and Oversight Disclosures
Last week the Securities and Exchange Commission adopted rules requiring public companies to notify shareholders of any "material" cybersecurity incident within four business days of determining that the incident rises to that level.
-
Cybersecurity
-
Data Security
-
Updates
-
-
EPIC Urges SEC to Interpret Harm Broadly in Breach Notifications Rule
EPIC filed a letter comment supporting the SEC's data breach notification and audit requirements, but called on the agency to expand its definition of harms that would trigger breach notifications.
-
Cybersecurity
-
Data Security
-
Updates
-
-
EPIC Comments on SEC Cybersecurity Audit and Breach Notification NPRMs
-
Cybersecurity
-
Data Security
-
APA Comments
-