An Economic Analysis of Notification Requirements for Data Security Breaches
نویسندگان
چکیده
Congress and the states are moving rapidly to enact new legislation in the wake of a series of high-profile data security breaches by both private and public institutions. Bills have been introduced that would impose a variety of obligations on both businesses and public-sector entities in the event of a security breach, and provide remedies for individuals whose personal information was acquired by an unauthorized party. A major component of all the legislative proposals is a requirement that consumers be notified when a security breach occurs that might compromise their confidential data.
منابع مشابه
The Market Effect of Healthcare Security: Do Patients Care about Data Breaches?
Data breach notification required by federal and state regulators has reduced information asymmetry on the effectiveness of information security programs. While pervasive media coverage of data breaches likely tarnishes an organization’s reputation, there is little empirical evidence that shows how consumers react to such organizational failures. Focusing on the healthcare sector as one of the ...
متن کاملThe Significance of Mandatory Data Breach Warnings to Identity Crime
The relationship between data breaches and identity crime has been scarcely explored in current literature. However, there is an important relationship between the misuse of personal identification information and identity crime as the former is in many respects the catalyst for the latter. Data breaches are one of the ways in which this personal identification information is obtained by identi...
متن کاملThe Economics of Mandatory Security Breach Reporting to Authorities
Legislators in many countries enact security breach notification regulation to address a lack of information security. The laws designate authorities to collect breach reports and advise firms. We devise a principal–agent model to analyze the economic effect of mandatory security breach reporting to authorities. The model assumes that firms (agents) have few incentives to unilaterally report br...
متن کاملOptimal information security investment in a Healthcare Information Exchange: An economic analysis
a r t i c l e i n f o The complexity of the problem, the increasing security breaches, and the regulatory and financial consequences of breached patient data highlight the fact that security of electronic patient information in Healthcare Information Exchanges (HIEs) is an organizational imperative and a research priority. This study applies classical economic decision analysis techniques and m...
متن کاملThe Economic Cost of Publicly Announced Information Security Breaches: Empirical Evidence from the Stock Market
This study examines the economic effect of information security breaches reported in newspapers on publicly traded US corporations. We find limited evidence of an overall negative stock market reaction to public announcements of information security breaches. However, further investigation reveals that the nature of the breach affects this result. We find a highly significant negative market re...
متن کامل