Regulatory Investigations Following a Reported Data Breach

In BakerHostetler's inaugural Data Security Incident Response Report, we found that regulators inquired about a company's breach 31% of the time and multi-state state Attorneys General investigations were launched less than 5% of the time. A post-breach investigation is not guaranteed. Certainly, in large, highly public incidents, companies can expect at least an inquiry if not a full-blown investigation.

10 minute read October 02, 2015 at 12:00 AM

Theodore J. Kobus III

This article is part of a series based on the BakerHostetler Data Security Incident Response Report. It focuses on developing and maintaining an information governance (IG) program. Look for further installments in future issues.

This premium content is locked for LawJournalNewsletters subscribers only

ENJOY UNLIMITED ACCESS TO THE SINGLE SOURCE OF OBJECTIVE LEGAL ANALYSIS, PRACTICAL INSIGHTS, AND NEWS IN LawJournalNewsletters

Stay current on the latest information, rulings, regulations, and trends

Includes practical, must-have information on copyrights, royalties, AI, and more

Tap into expert guidance from top entertainment lawyers and experts

Already have an account? Sign In Now

For enterprise-wide or corporate access, please contact Customer Service at [email protected] or call 1-877-256-2473.

Innovation Engineering: How Firms Can Think Bigger and Ask Better Questions

Most firms are aiming their newest tools at the work they already do — pouring their most powerful technology into running the same tasks a little faster. But when everyone automates the same tasks at once, no one pulls ahead. That reaches the future a little faster while leaving a firm’s largest opportunity untouched — and that opportunity isn’t doing more of the existing work, but transforming how the high-value work gets done.

June 01, 2026

Don’t Let AI Distract You from What’s Really Breaking: The Security Basics

AI is becoming both an accelerant and a distraction for cybersecurity. In many respects, AI is acting as a stress test for existing security operations by exposing how difficult many organizations still find it to enforce basic controls consistently at scale.

June 01, 2026

Legal AI’s Biggest Mistake: Treating All Workflows the Same

Artificial intelligence is rapidly embedding itself into legal workflows, but much of the conversation treats all use cases as if they carry the same level of risk, even if they do not. The more useful question is not whether AI works, but where it can be safely applied and where it cannot.

June 01, 2026

The Most Important Tool for AI Savvy Lawyers? It’s the Right Mindset

AI-savvy lawyering is already something that clients are starting to demand. The technology is capable; the challenge now is cultural and organizational change.

June 01, 2026

Regulatory Investigations Following a Reported Data Breach

This premium content is locked for LawJournalNewsletters subscribers only

Continue Reading

Innovation Engineering: How Firms Can Think Bigger and Ask Better Questions

Don’t Let AI Distract You from What’s Really Breaking: The Security Basics

Legal AI’s Biggest Mistake: Treating All Workflows the Same

The Most Important Tool for AI Savvy Lawyers? It’s the Right Mindset