I recently gave a talk on Faculti about ideas in my recent book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022), about how major security breaches could be prevented through new approaches to data security law. The Faculti platform provides a library of 8,000 video and audio insights […]
Category: Data Security
Posts about Data Security by Professor Daniel J. Solove for his blog at TeachPrivacy, a privacy awareness and security training company.
Unifying Privacy and Data Security
Professor Woodrow Hartzog and I have posted on SSRN another free chapter from our recent book. The chapter is entitled Unifying Privacy and Data Security. The chapter is about the relationship between privacy and data security, and it can be read as a stand-alone essay. With our publisher’s gracious permission, we’re making this chapter available […]
Data Vu: Why Breaches Involve the Same Stories Again and Again
Woodrow Hartzog and I wrote a new article about data breaches called “Data Vu: Why Breaches Involve the Same Stories Again and Again.” We discuss how data breaches involve the same old mistakes and how we must break the cycle. We begin: In the classic comedy Groundhog Day, protagonist Phil, played by Bill Murray, asks “What would […]
Key Quotes from BREACHED!
Professor Woodrow Hartzog and I selected some key quotes from our new book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022). Website for Breached! Breached! Amazon Page Download Chapter 1 for free The Law’s Obsessive and Unproductive Focus on Data Breaches “Too much of the current law of data security […]
We Still Haven’t Learned the Major Lesson of the 2013 Target Hack
I have an article with Professor Woodrow Hartzog in Slate created from an excerpt from our new book, Breached! Why Data Security Law Fails and How to Improve it We Still Haven’t Learned the Major Lesson of the 2013 Target Hack By Woodrow Hartzog & Daniel Solove Slate (April 13, 2022) You can read Chapter […]
Chronicle of a Breach Foretold – Download Chapter 1 of BREACHED!
Professor Woodrow Hartzog and I have posted Chapter 1 of our new book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022) on SSRN: Chapter 1: Chronicle of a Breach Foretold You can download it for free. Website for Breached! Breached! Amazon Page * * * * This post was authored […]
BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022)
I’m delighted to announce that my new book, Breached!, with Professor Woodrow Hartzog is now out in print: BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press, March 1, 2022) Website for Breached! Breached! Amazon Page Excerpt from the book jacket description: Drawing insights from many fascinating stories about data breaches, Solove […]
Automating Privacy Incident and Breach Response: An Interview with Andy Lunsford
Privacy law compliance and data breach response involve tasks of great complexity and scale that can quickly overwhelm an organization’s privacy team. Technologies have emerged to automate these tasks, but there are many decisions to make about which tasks to automate and which solutions to use. I recently had a chance to chat with Andy Lunsford is […]
VIDEO: Conversation with Guernsey’s Data Protection Commissioner Emma Martins
Recently, I spoke with Emma Martins, Data Protection Commissioner at Guernsey’s Office of the Data Protection Authority as part of their Project Bijou. We spoke about a number of topics, including the effect of the GDPR and my new children’s book about privacy, The Eyemonger. You can watch the video of our conversation here.
Developments in Data Incident Response: An Interview with Mahmood Sher-Jan
I had the great opportunity to interview Mahmood Sher-Jan about new developments in data incident response. Mahmood Sher-Jan, CHPC, is the Founder and CEO of RadarFirst, a company dedicated to applying innovation and software technology to address the growing data privacy and security challenges faced by organizations that maintain regulated personal data. He holds patents in incident management, fraud prevention, […]