US Updates Guidance for Strengthening Cyber Security Ethics

The US Bar Associated distributed guidance on legal firms' obligations to customers in regards to breaches of security for material client data.

They incorporate observation for breaches of records and data; reinstating systems after such breaches; post-breach examinations, and distributing info for current customers when a significant leak has occurred. Interestingly, it excludes obligations to notify ex-customers of any leaks.