Authors: Research Scholar Aman Malik
Abstract: In an increasingly digitized world, data breaches and cybersecurity failures have emerged as significant legal and regulatory concerns for both public and private sector entities. This paper explores the legal implications associated with data security incidents, focusing on regulatory frameworks, liability issues, and enforcement actions in place prior to December 2018. Key legislation such as the European Union’s General Data Protection Regulation (GDPR), the United States’ sector-specific laws (including HIPAA and the GLBA), and emerging legal standards in Asia are examined. The study analyzes landmark data breach cases to highlight the evolving role of compliance, corporate responsibility, and the consequences of negligence in cybersecurity governance. It also discusses the legal challenges organizations face in cross-border data breaches and the implications for international cooperation. By assessing these issues through a legal and technological lens, the paper provides guidance on risk mitigation, legal preparedness, and the necessity for robust cybersecurity policies to meet growing regulatory expectations.
