Cybersecurity
Cybersecurity incidents and data breaches pose significant risks to businesses, often threatening their very existence. With the severity and frequency of cyber incidents on the rise, cybersecurity has become a top concern for executives. The ever-growing landscape of cybersecurity regulations affects businesses across all sectors. At Tanner De Witt, our cybersecurity team comprises experienced lawyers and a vast professional network, allowing us to swiftly respond during crises and help clients meet regulatory requirements across multiple jurisdictions while strategically managing legal risks. We work closely with our clients, providing proactive guidance to mitigate cyber risk before incidents occur and supporting incident response teams in preparing for cybersecurity incidents and data breaches. Our expertise extends to advising on cybersecurity regulations in various jurisdictions throughout the Asia Pacific region and worldwide, through our network of trusted local counsel.
As the exclusive law firm member of PrivacyRules in Hong Kong, we are uniquely positioned to leverage our connection to an international alliance of cybersecurity experts. This alliance combines legal, technical, and data-related expertise to provide clients with a multi-disciplinary and multilingual approach to cybersecurity challenges.
Key Contacts
Services
We advise on:
- Data breaches and cybersecurity issues, including advice to board directors and C-suite executives and review in guidance of crisis communications
- Enforcement actions, regulatory inquiries, investigations or litigation following a cybersecurity incident or data breach
- Selection, engagement and supervision of technical experts and other key service providers in the incident response
- Issue identification, applicable law assessment, risk and harm assessment, notification assessment, and reporting requirement review
- Information and data collection, chain of evidence protection and preservation of legal professional privilege
- Training, preparation and exercise programmes in respect of incident and breach response
- Policy and plan drafting and reviews in respect of incident and breach response
- Cybersecurity and related laws and regulations in various jurisdictions including the PRC, and in particular their potential and actual impact on business operations
Experience
- Advising a multinational chemical company in respect of a data breach by a data processor
- Advising an international professional services firm in respect of a data breach committed by an employee when working onsite in another client’s office
- Advising on data breach notification preparation and engagement with privacy regulator in respect of a data breach affecting current and former employees in Hong Kong
- Advising and training employees and management of a multinational manufacturer on data breach response
- Training employees of a multinational automobile manufacturer in respect of data protection in automotive industry