Third-Party Data Breaches Highlight the Importance of Vetting Vendors in Compliance With GDPR and CCPA

August 21, 2019

By: Linda A. Malek, Jason E. Johnson, and Nora Lawrence Schmitt

Cybersecurity Law Report

Diligence on third parties is a cornerstone of any cybersecurity program given the risk vendors pose, and now regulations such as GDPR and CCPA specifically address what companies need to do to vet and monitor their vendors. In this guest article, Moses and Singer attorneys Linda Malek, Jason Johnson and Nora Lawrence Schmitt provide strategies for vetting third parties, structuring contractual agreements and conducting ongoing monitoring. They also examine the costs of violations in light of these new regulatory requirements. To access the article, please click here.

PDF File View as PDF