|
|
|
|
|
|
by after_care
1635 days ago
|
|
|
I’m not sure I believe in 100% strict liability. Imagine if someone were to perform a B&E or armored robbery at a physical location to steal hard copies of records. Clearly if someone uses a zero day to steal personal information from an otherwise secure server than the server’s owners were not negligent. In addition, often times the only people that know there was a data breach is the organization that had their data breached and the attackers that stole the data. None of the parties could report the data breach without violating their 5th amendment rights if they both had legal liability. |
|
|