Has anyone been successful negotiating a “breach notification costs” provision in contracts with vendors? What are some good args to include it? I feel like vendors generally flat out say “no”, but I have seen some contracts where vendors were willing to include it and I’m wondering how that happened 😁

like
Posting as :
works at
You are currently posting as works at

First understand what your own insurance covers.

Then understand what their insurance covers.

Then negotiate.

helpful

This is included in the vast majority of DPAs I have negotiated with vendors, but its usually subject to any negotiated privacy cap.

I’m sure it happens but I would laugh anybody who attempts such of a clause out of the building

I work in the health care field. Very common to see indemnification provisions for breach notifications costs related to HIPAA breaches. The breach costs are not logically associated with the cost of the services, so there are usually caps based on breach response cost per record and records accessed in the performance of services. We often require insurance policies in the $5M-$10M range if there will be extensive access.

Related Posts

Can anyone refer to me in Cvent, Gartner or Deloitte?
.
YOE: 7+
Location: Gurgaon
Area of expertise: Content, Social Media, & Digital Marketing
.
TIA🙏

like

I don’t trust cheese that doesn’t melt

likefunnysmart

So something crazy happened to me last week. I was at the airport, and as usual on call after call. The check in line was going ridiculously slowly and at some point turned threw my hands up in frustration while looking around to find another place to check in. In doing so, I catch the eye of the behind me. He smiles and says something. I just sort of nod and carry on with my call. After that, he keeps trying to talk to me, eventually I got to the check, say bye and leave. At security… tbc

like

Hi Fishies. Looking for a good real people/comedy directors who can work with lower budgets . Would love any recommendations. Thanks.

like

Hi
I am a senior graphic designer
Work experience - 8years
How much salary should I be getting?

like

What's a nice restaurant to take relatives to when they're in the city visiting? Would like something nice but not over-the-top fancy.

like

Does IBM providing mac books to new hires this year or is this domain specific? Lenovo ka thinkpad chhod k dell Hp b chalega.. macbook ki chah ni hai. Plz batao kya process rehta h.

like

Should I opt for online 2 yrs MBA from DY patil university? It is good or should I look for alternative. I am getting alot of calls from them. Please suggest. I have around 3 yrs experience in IT.

like

Any single F looking to get dinner or drinks today evening? 35 M here.

like

FRM is has narrow focus, demands depth, quick to complete

like

Recently obtained my aPHR and I’m considering next steps in advancing my career. I am eligible to sit for the SHRM-CP presently and will not be able to sit for a PHR until 09/2023. Any pros/cons with either certification? Should I wait to sit for PHR or go for SHRM-CP now?

like

How’s the draft going? — It’s progressing

Recitals v rest of draft

Post Photo
likefunny

Conversation I had with an attorney friend last night. I know there's some of y'all that will feel this.

Post Photo
likefunny

Already spoke with a partner who wanted something done this morning for him to review and then we discuss again. Sent it to him about 4 hours ago. Should take him half an hour to review max. At what point can I check in with him to see when we can catch up so I’m not waiting in the office all day?

like

Hi, I have an offer from Deloitte India where LTA is shown as part of CTC. Can I get this amount as monthly or I can only claim this in March (year end). Please help existing Deloitte employees. . Urgent. Thanks a lot. Deloitte India Deloitte USI Deloitte

likehelpful

Credit Suisse (Pune) usually takes how many rounds of interview?

Hi,

Please help me to choose from below two.
1. Valuelabs
2. R Systems
Yoe and tech :- Java Springboot, 3.5 years
Both are providing wfh and same package
Need to join tomorrow.
TIA

like

Hey everyone - I'm finally having a little breathing room in my work schedule and looking to get out and explore the city a little bit more. What are your top "must see's" or must do's? Really open to anything interesting within reason lol

like

Any recommended restaurants with a live band/entertainment? Please indicate how much, if music is ticketed.

like

What is 2nd round for In an Interview ? What do they ask ?

like

Additional Posts in Privacy Law

Can anyone share a salary range for a Privacy Manager role in the private sector for someone with a JD and several years of experience?

Can creditors go after my US assets if I file for bankruptcy in a different country? Not sure if this is based on US law or that country's law (Spain)

like
like

Looking for referrals to privacy practice at firms - not recruiters, associates only please. I am a senior corporate privacy associate with experience in counseling, compliance and regulatory advice. Experience with clients of all sizes and risk tolerances - start ups to global companies. No interest in firms that pay under market (no offense). TIA

like

Is it normal for a California employer to include a very detailed notice in the employee handbook about employee monitoring practices and the company’s right to search your stuff? Or do I need to look for a new job immediately….. 🚩

like

Can anyone share a salary range for a non-attorney with a JD and 1 YOE handling incident response and contract negotiations?

like

I am preparing for the CIPP/US exam using their official textbook (3rd Ed). If anyone has a good outline, would you be willing to share? I tried to create one myself but it is taking way too long :/ Thanks so much in advance!

like

Anyone have any suggestions on how to break into this field as a mid-level commercial litigator? I was thinking of taking the CIPP-US test but would that be enough to get some interview traction?

like

Anyone here work at Meta? Looking for a referral for a privacy role

like

Is anyone involved in IAPP’s young privacy professionals group? Is there an age cutoff? They keep emailing but I wouldn’t consider myself “young”! Will they stop emailing when I turn 40?

likefunny

How Much Can You Sue an
Employer for Not Paying You?

like

Any firms/companies hiring in their privacy group? Looking for fully remote or TX

like

What are the best resources you’ve found that walks you through step-by-step, the data incident management process and what to ask your client?

like

Anyone have any CIPP/US practice questions besides the 30 from the IAPP?

like

I’m currently doing IR work but would like to do something more on the technical side (ie: more forensics or technical). Does anyone know if forensics firms or any firm that offers a mix ? I have both a Cipp-Us and cyber/ Sec+ certs.

like

Mid/big law privacy associates- how much do you bill a month on average? is your workload predictable?

like

So as a 30ish yo with a government/PE/tech background and CIPM/CIPP… I’m finding privacy work is just much easier and interesting than other kinds, but still pays plenty well.

Is it too late/inadvisable to go to law school to specifically aim for privacy work?

I just find some firms are unwilling to entertain the idea that anyone but a lawyer has anything relevant to contribute in this space…

like

In terms of taking the next step to elevate your career- what items are you heavily focusing on? I have speciality in data governance as well as product counseling, but curious to know what others find most helpful in their practice areas.

likehelpful

IAPP is such trash. Why does everyone recommend getting the CIPP certs when they mean nothing??

like

Can we talk about privacy vendors? We are looking for a platform to handle data inventory and/or data discovery, as well as automating the privacy impact assessment process. We already have vendors for DSARs and cookies. Do most people consolidate all these functions to one platform or use multiple? Anyone willing to share vendors they have had good or bad experiences with?

like

New to Fishbowl?

Download the Fishbowl app to
unlock all discussions on Fishbowl.
That was just a preview…
Sign Up to see all discussions
  • Discover what it’s like to work at companies from real professionals
  • Get candid advice from people in your field in a safe space
  • Chat and network with other professionals in your field
Sign up in seconds to unlock all discussions on Fishbowl.

Already a user?
Login here

Share

Embed this post

Copy and paste embed code on your site

Preview

Download the
Fishbowl app

See what’s happening in your industry
from the palm of your hand.

A phone with Fishbowl app

Scan your QR code to download
Fishbowl app on your mobile

Download app

Sign up for free to view this conversation on Fishbowl

By continuing you agree to Terms of Use and Privacy Policy

Already have an account? Log in

Sign up for free to continue using Fishbowl

By continuing you agree to Terms of Use(New) and Privacy Policy(New)
Messaging rates may apply

Already have an account? Log in

For account settings, visit Fishbowl on Desktop Browser or

General

Legal