Cybersecurity is among the fastest-growing industries in the U.S., and there is great demand for an authoritative guide to cybersecurity law. Expanding on the author’s work in big data and analytics, this book provides a definitive guide to cybersecurity and data security law, with an in-depth analysis of U.S. and international laws that apply to data security, data breaches, sensitive information safeguarding, law enforcement, cybercriminal combat, and many other cybersecurity issues. The federal government's ever-evolving role in developing and protecting cybersecurity infrastructure in addition to the cybersecurity obligations that the government faces under federal law all play a significant role in the ever-evolving discipline of cybersecurity. The author balances technical information with a narrative that synthesizes the key statutes, regulations, and court rulings into an easily digestible format for a wide range of readers with diverse backgrounds. Written in an accessible manner, each chapter provides several real-world examples, discussion questions, and case studies to help readers understand the practical applications of the presented material. The book begins by introducing the differences between privacy law and cybersecurity law and how they work together, as well as a compilation of the various legislative proceedings pertaining to cybersecurity, which includes relevant details on the federal and state laws, regulations, and court opinions. Next, the author outlines the legal requirements for data security, which synthesizes the Federal Trading Commission (FTC) statements in order to provide the background of the FTC’s views on data security. The author also features an overview of the differences between the U.S. and foreign data security laws. The cybersecurity requirements in Europe, Asia, and Latin America (the most common U.S. trading partners) are included and specifically address how these requirements are similar to (and differ from) those in the United States. The book also addresses how U.S. companies comply with both domestic and international cybersecurity laws. The book delves into the statutes, regulations, and court options regarding the security of sensitive information, such as bank account data, health information, and information collected from children. Anti-hacking laws, such as the federal Computer Fraud and Abuse Act and the Digital Millennium Copyright Act, and how companies are able to fight cybercriminals while ensuring compliance with these laws are discussed thoroughly. The author also provides an overview of the laws that restrict coordination between the public and private sectors, as well as the tools that regulators have developed to allow a limited amount of collaboration.
