Telecompaper reports:
Dutch ISP XS4ALL and the law firm Brinkhof have awarded their annual Internet Thesis prize to a masters student researching required disclosure of data breaches. The research found that any such legal requirement would likely not meet its objectives. The thesis was based on the number of disclosures in the US before and after implementation of legal requirements. While the number increased after the requirement was imposed, the impact was minimal: over the research period of eight years, only 0.05 percent of businesses in the US reported a data leak, while British research had already shown that around 80 percent of security managers have dealt with data breaches.