This week, the EU and U.S. signed an agreement that will give EU citizens the same data breach judicial redress as US citizens currently receive. The agreement won’t become international law until the European Parliament has given its approval, but if your organization collects and stores personal information from EU citizens, it is time to consider extending your existing digital breach policy.

If you have not yet defined a data breach policy and a corresponding “first 48 hours” response plan — a best practice for any organization — this is a good reminder that putting it off may only increase your liability and make the job harder should your organization’s data be compromised.

Photo by Stephen Leonardi