Lawyers have ethical obligations following a cyberattack or data breach involving confidential client information, where such information is misappropriated, destroyed or otherwise compromised, or where the data event impairs the lawyer’s ability to perform client services. The ethical obligation of lawyers following a data breach depend on the lawyer’s role, level of authority, and responsibility in the operation of a law firm.
In a new article for the San Diego County Bar Association, I discuss how ABA Formal Opinion 483 provides a road map in such instances. You can read the full article here.