Staff at the Securities and Exchange Commission’s Corporate Finance Division issued some non-binding guidance on how companies should disclose their responsibilities when dealing with cyber-security risks and breach of data incidents.
In its latest CF Disclosure Guidance Topic No. 2, released on Oct. 13, staff at the Corporate Finance Division (Corp Fin) outlined companies’ disclosure obligations in the event that they experience or may potentially be affected by breach of data incidents.
