This course is intended to provide students with an understanding about cybersecurity as defined in the law and in the real world when an intrusion or hack occurs, successful or not. What is the legal fall-out? What is the organizational fall-out? What does such an event mean to the ongoing success of the business entity or law firm?
This course discusses the relevant legal standards and frameworks; related business compliance and other pressures; resulting litigation, such as class action and payment processor claims; and the rights of the company or law firm, as well as the privacy rights of its customers, clients and employees, when an intrusion occurs.
This course also clarifies the importance of robust and well-thought-out compliance programs, as well as the variety of different substantive areas of law that converge in the context of one of today's hottest topics - cybersecurity. This course builds the skills and knowledge needed to advise companies in the event of an intrusion, and also to understand the responsibilities of law firms (to themselves and their clients) in such situations.
The course is not meant to replace the core courses in the curriculum, but rather to frame them in the context of cybersecurity issues.
Students will be asked to study the current state of this rapidly evolving area of law, and then create and apply their own compliance program to a hypothetical company and law firm set of facts.
Note: There is no final exam in this course - grades are based on written and oral exercises.