Against the current backdrop of both emerging external risk and heightened enforcement trends, any organization that interfaces with personal data must have a well thought-out plan for investigating and responding to potential data breaches and allegations of misuse.
100% security and compliance is not a practical objective. Properly scoped and executed forensic investigations coupled with robust and defensible compliance programs are an organization's best bet for reducing eventual fines, limiting regulatory attention, and restoring investor and consumer confidence in the event of an incident.
FRA Partner Simon Taylor and Associate Director Matt Bedan discuss the more significant mitigating factors to consider in advance when planning your company's incident response, and the key steps to incorporate into that process, in their article: 'Playbook for a Forensic Data Investigation'.