There have been many cases of US companies covering up serious personal data breaches for months at a time – often only admitting to them when an outside source learns of it.
This isn’t possible in Europe, where the law requires unauthorized access to personal data to be reported to regulators within three days, and now the US is finally adopting a similar requirement – even if it’s not for your benefit …
more…
