About | HeinOnline Law Journal Library | HeinOnline Law Journal Library | HeinOnline

4 Akron Intell. Prop. J. 203 (2010)
One More unto the Breach: An Analysis of Legal, Technological, and Policy Issues Involving Data Breach Notification Statut3es

handle is hein.journals/akrintel4 and id is 207 raw text is: ONCE MORE UNTO THE BREACH:' AN ANALYSIS OF
LEGAL, TECHNOLOGICAL, AND POLICY ISSUES
INVOLVING DATA BREACH NOTIFICATION STATUTES
Dana J. Lesemann2
I.  Introduction     ....................................................................... 204
II.  B ackground     ........................................................................ 206
III. Personal Information Defined ........................................... 209
A. The California Model .................................................. 209
B.   Other State Variations ................................................. 212
IV. Defining a Data Breach ..................................................... 212
A. The Strict Liability Model .......................................... 213
B.   The Risk Assessment Model ....................................... 215
C.   Blending Definitions: Risk Assessment and Strict
L iability  ....................................................................... 2 17
D.    Conducting the Investigation ...................................... 218
E.    Safe Harbor under Federal Banking Statutes and
O ther  Law   s .................................................................. 220
F.   Recommendation: States Should Adopt the Risk
Assessment Model which Presents Greater Benefits
for the Consumer over the Strict Liability
A pproach    ..................................................................... 22 1
V. When Time Limits Are Not Really Time Limits .............. 222
A .  Penalties    ...................................................................... 224
B. Enforcement and Litigation under the Data Breach
Statutes ........................................................................ 225
1. WILLIAM SHAKESPEARE, KING HENRY THE FIFTH act 3, sc. 1.
2. Managing Director and Deputy General Counsel, Stroz Friedberg; Adjunct Professor of
Law, Howard University School of Law. Stroz Friedberg is a consulting and technical services firm
specializing in digital forensics, network intrusion, data breach response, and cyber-security
investigations. I am grateful to my colleagues at Stroz Friedberg for their assistance in developing
this article, particularly the research of Steven Mecca and the expert editorial review of Miriam
Birnbaum, Thomas Harris-Warrick, and Paul Luehr. Thanks also to Ahmed Baset, Howard
University School of Law, Class of 2010. All errors, of course, remain my own.

What Is HeinOnline?

HeinOnline is a subscription-based resource containing thousands of academic and legal journals from inception; complete coverage of government documents such as U.S. Statutes at Large, U.S. Code, Federal Register, Code of Federal Regulations, U.S. Reports, and much more. Documents are image-based, fully searchable PDFs with the authority of print combined with the accessibility of a user-friendly and powerful database. For more information, request a quote or trial for your organization below.



Short-term subscription options include 24 hours, 48 hours, or 1 week to HeinOnline.

Contact us for annual subscription options:

Already a HeinOnline Subscriber?

profiles profiles most