State-level data protection laws are becoming more common in the United States. These states have laws that govern minimum cybersecurity requirements:
Why should you take these state-level Information Security laws seriously? The reason is simple: A single negligent breach can close your business forever, because liability insurance will not cover professional negligence. Without the ability to prove steps were taken to ensure due care and due diligence were applied to your business operations, you may be considered negligent in a lawsuit. Additionally, Information Security policies are a tool that you can use to enforce proper conduct by your employees.
