Pressure has been mounting on companies to "go public" with notice of large data breaches even quicker than they have been. In the forensics world, "faster" is not always "better" and can put inside investigations of such incidents at risk. Our friends at William Gallagher have posted an interesting analysis of the importance of post-breach analysis. We would add that pre-incident planning include careful provisions for post-breach forensics so that the notice tail does not wag the investigation dog.
Cynthia J. Larose is Chair of the firm's Privacy & Cybersecurity Practice, a Certified Information Privacy Professional-US (CIPP-US), and a Certified Information Privacy Professional-Europe (CIPP-E). She works with clients in various industries to develop comprehensive information security programs on the front end, and provides timely counsel when it becomes necessary to respond to a data breach.