DHS Advisory Group Approves Data Breach Notification Best Practices

Nextgov: A Homeland Security Department advisory committee approved a set of best practices Tuesday for DHS agencies notifying employees, citizens or others about a data breach that’s compromised their personal information.

An earlier draft of the best practices document essentially urges agencies to seek a balance in their notification procedures: Move quickly to comply with legal requirements and to give people affected by the breach ample opportunity to take defensive measures but not so quickly you’re providing unclear or even false information. Notify people who may be harmed by a breach, but beware of “overnotification” to the point people stop taking notices seriously.

Read article