find the latest legal job
Part Time Risk & Compliance Officer
Category: Other | Location: Brisbane QLD 4000
· Brisbane City · Flexible Part Time Hours
View details
Infrastructure Lawyer/SA
Category: Construction Law | Location: Sydney CBD, Inner West & Eastern Suburbs Sydney NSW
· Global elite law firm · Dedicated Infrastructure team
View details
Property Lawyer
Category: Property Law | Location: All Melbourne VIC
· 12 Month Contract · Diverse Work
View details
Family Lawyer
Category: Family Law | Location: Eastern Suburbs Melbourne VIC
· Boutique Firm · Great Reputation
View details
Infrastructure Lawyers
Category: Construction Law | Location: All Perth WA
· We'd be particularly interested to hear from you if you were a lawyer who knows your way around the infrastructure and energy sectors.
View details
NRF: Lawyers belong on the front lines in hacking scandals

NRF: Lawyers belong on the front lines in hacking scandals


The first port of call following a data breach should be a specialist lawyer who can coordinate a response under the protection of legal professional privilege, one insurance partner says.

Norton Rose Fulbright, which is currently acting for Ashley Madison in a minor capacity in the US, held a seminar on the role of ‘data breach coaches’ in Sydney last week.

“Ashley Madison put this whole thing on the map – nothing like a bit of titillation to get people interested,” NRF partner Tricia Hobson (pictured) told Lawyers Weekly.

A ‘data breach coach’ is a lawyer who acts like a project manager to organise the immediate response when data is stolen from a client, she said.

“If a company suffers a breach they pick up the phone, ring the data breach coach and that lawyer knows exactly what to do to try to contain the damage for that company.”

The lawyer will contact the relevant vendors that can help “contain the fallout from the breach as quickly as possible”.

“Now that will include […] the people who can get into the system at the company and check whether or not the breach is live (i.e. is the hacker still in the system?).

“They will assess what kind of damage has been done, what sort of data has been compromised and they will look at ways to deal with that and to fix the problem.”

The designated lawyer or legal team also deal with the PR elements at play and help the client handle the media and concerned customers.

“They're a hand holder for the company,” Ms Hobson explained.

Cyberattacks often deal a double blow to clients: there is the first party loss to the company itself and then there is the potential litigation against the company by customers.

“One of the reasons it is important to be a lawyer is because we can cloak what we do in legal professional privilege,” said Ms Hobson.

“If you are going to get sued […] you want everything you do [after] you discover the breach to be protected by legal professional privilege.”

You've been hacked! Who ya gonna call?

The concept of a data breach coach is relatively new to Australia, but is quite popular in the US and UK.

One of the reasons is that Australia does not yet have mandatory data breach disclosure requirements (although the federal government has indicated that it will introduce new notification laws by the end of 2015).

“Most companies are being hacked all the time,” said Ms Hobson. “In Australia we haven't [seen] too many yet because we don't have mandatory breach requirements, but that doesn't mean it is not happening – it is.

“There are two sorts of companies – those who have been hacked and those who will be hacked and there is no one who doesn't fall within that subset.”

NRF’s team in Australia has been drawing on knowledge from their colleagues overseas to introduce the concept of a data breach coach to insurers and clients.

Ms Hobson said that other firms are behind the eight ball when it comes to this kind of service.

“Some are saying that they can do it, [but] they are starting from scratch here because they don't have US and UK colleagues to draw on,” she said.

The NRF insurance team is a finalist for the Australian Law Awards Insurance Team of the Year award. Other finalists include Hall & Wilcox, Holman Webb, Lander & Rogers Lawyers, Meridian Lawyers, Saltwater Insurance Consultants, TurksLegal and Wotton + Kearney.

The Australian Law Awards will be presented at The Westin Sydney on 17 September – purchase tickets here.

Like this story? Read more:

QLS condemns actions of disgraced lawyer as ‘stain on the profession’

NSW proposes big justice reforms to target risk of reoffending

The legal budget breakdown 2017

NRF: Lawyers belong on the front lines in hacking scandals
lawyersweekly logo
Promoted content
Recommended by Spike Native Network
more from lawyers weekly
Nov 17 2017
It's time for politicians to commit to eradicating domestic violence
The national shame of domestic violence cannot be left unaddressed, writes Christine Smyth. ...
Nov 16 2017
From lawyer in law firm to senior governance professional
Promoted by Governance Institute of Australia As a law graduate, Kate Griffiths never imagined...
marriage equality
Nov 16 2017
Legislation the next hurdle for marriage equality
Lawyers have underscored the importance of ensuring same-sex marriage legislation does not limit ant...
Allens managing partner Richard Spurio, image courtesy Allens' website
Jun 21 2017
Promo season at Allens
A group of lawyers at Allens have received promotions across its PNG and Australian offices. ...
May 11 2017
Partner exits for in-house role
A Victorian lawyer has left the partnership of a national firm to start a new gig with state governm...
Esteban Gomez
May 11 2017
National firm recruits ‘major asset’
A national law firm has announced it has appointed a new corporate partner who brings over 15 years'...
Nicole Rich
May 16 2017
Access to justice for young transgender Australians
Reform is looming for the process that young transgender Australians and their families must current...
Geoff Roberson
May 11 2017
The lighter side of the law: when law and comedy collide
On the face of it, there doesn’t seem to be much that is amusing about the law, writes Geoff Rober...
May 10 2017
Advocate’s immunity – without fear or without favour but not both
On 29 March 2017, the High Court handed down its decision in David Kendirjian v Eugene Lepore & ...