Publicly owned companies must comply with a new set of regulatory deadlines during the next week that will require swift disclosure of malicious cyberattacks on their networks and the processes in place to prevent them from happening again.
Entities subject to Securities and Exchange Commission authority will be required to file reports about data breaches within a shortened time frame, and must include additional specifics about the scope of any incidents, according to new SEC regulations effective Dec. 18. In-depth descriptions of a company’s cybersecurity governance will also be required in annual disclosures starting Dec. 15.
The updated obligations take ...
Learn more about Bloomberg Law or Log In to keep reading:
Learn About Bloomberg Law
AI-powered legal analytics, workflow tools and premium legal & business news.
Already a subscriber?
Log in to keep reading or access research tools.