More and more organizations are suffering at the hands of the digital terrorists who are slowly penetrating corporate networks and stealing sensitive data not only about or organizations, but our customers and our business partners also.

As a direct result of the exponential rise in digital attacks and the huge number of reports of lost or stolen data, more and more organizations are finding themselves in legally precarious situations as a direct result of inadequate digital security.

Given the recent developments in cyber-law, there is now a requirement in the United States for every organization to have some form of clearly defined privacy and data security policy that aims to protect data from unauthorised access, loss or theft.

Sadly, many organizations are now resorting to their existing business attorneys for legal advice pertaining to cyber law and the truth is business attorneys are not minded in the ways of cyber privacy and information security law.

This means relying on them may leave you vulnerable as your existing legal advisor may not be well versed in the terminology of security and privacy compliance.

As a result, it is important to ensure that organizations have some recognition when it comes to privacy compliance and information security issues so that in the events of a worst-case scenario, the company is well protected and isolated from the subsequent legal action.

The express concerns of the government are that organizations do not become complacent in the realms of digital privacy and information security.  More and more corporations are reporting ‘losses’ of data and un-authorized intrusions into networks.  As a result, it is only fair that those businesses with inadequate security precautions are held partly culpable for the losses they incur.