In honor of Data Privacy Week, each day this week Miller Nash is releasing one of our top five recommendations for where businesses should focus their privacy compliance efforts in 2024. If you need assistance reviewing your company’s compliance with privacy and data protection obligations or updating your policies and procedures, please contact our privacy & data security team.
Check Your Third-Party Agreements Against Internal Policies
In addition to amending agreements to comply with new legal requirements, review your existing agreements for new technologies. For example, how is your business integrating artificial intelligence (AI)? How are your vendors using AI and using your data to train the AI? Are employees using AI products, whether through authorized means or on their own initiative? AI governance needs to take privacy and security into account.
Review your cyber insurance coverage and policy requirements. Evaluate whether your insurance policy(s) covers what you think it covers. Evaluate whether your internal policies and procedures meet the requirements for coverage or if your provider will fail to cover an incident because your business, for example, does not have multifactor authentication for administrator functions and remote access.
We hope you enjoyed this series and now have actionable steps to take to enhance your company’s privacy compliance efforts during Data Privacy Week and year-round.
Read other Data Privacy Week Series posts: Check Your Policies and Procedures Against Legal Updates
This article is provided for informational purposes only—it does not constitute legal advice and does not create an attorney-client relationship between the firm and the reader. Readers should consult legal counsel before taking action relating to the subject matter of this article.