Data breach liabilities of company directors

Steve Wright and Ezgi Pilavci
Additional contact information
Steve Wright: Privacy Culture, UK
Ezgi Pilavci: Boston Consulting Group (BCG), UK

Journal of Data Protection & Privacy, 2021, vol. 4, issue 3, 283-293

Abstract: This paper shows that data protection falls under the fiduciary duties of board members, albeit they may not be expected to take an active part in the implementation phase; they must assure that employees are equipped with data protection and security awareness and their roles are allocated properly. It discusses how companies need to know how compliance management can be ‘reasonable, adequate, appropriate’ in practice. The first step is to know the needs of the organisation and address the risks. A simple oversight can cause material benefits, and therefore, data protection and privacy must be treated as a corporate governance issue.

Keywords: data breach; security; directors’ liability; data protection; corporate governance (search for similar items in EconPapers)
JEL-codes: K2 (search for similar items in EconPapers)
Date: 2021
References: Add references at CitEc
Citations:

Downloads: (external link)
https://hstalks.com/article/6387/download/ (application/pdf)
https://hstalks.com/article/6387/ (text/html)
Requires a paid subscription for full access.

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:aza:jdpp00:y:2021:v:4:i:3:p:283-293

Access Statistics for this article

More articles in Journal of Data Protection & Privacy from Henry Stewart Publications
Bibliographic data for series maintained by Henry Stewart Talks ().