E-DISCOVERY
How AI Streamlines Data Breach Review for General Counsel By DANIEL SHOLLER
A
s data breaches increase in frequency and severity, data protection and privacy regulations are requiring organizations to deliver reports to regulators very quickly. With data volumes regularly in the terabytes, delivering accurate reports on time can be very challenging for affected organizations. In the case of the EU’s General Data Protection Regulation, impacted
10
organizations must report the extent of the breach within 72 hours of detection. When a breach occurs, the first step in the remediation process is determining how much data was compromised and what data qualifies as personally identifiable information (PII), personal health information (PHI) or other sensitive data. From a regulatory timeline standpoint, this task can
TODAYSGENERALCOUNSEL.COM NOVEMBER 202 1
be next to impossible to fulfill without automation and massive internal resources, so organizations typically outsource to a law firm or legal subject matter expert that specializes in handling data breaches. Yet even outsourcing doesn’t necessarily address the challenges of quickly reviewing vast amounts of data, due to the lack of a comprehensive technology solution to BACK TO CONTENTS
