In this book chapter, we survey the law and policy of data security and analyze its strengths and weaknesses.
Overall, we contend that data security law is too reactionary. The law fails to do enough to prevent data breaches, focuses too much on organizations that suffer data breaches and ignores other contributing actors, and doesn't take sufficient steps to mitigate the harm from data breaches.
[
add
]
[
|
|
...
]