The public disclosure of security breaches is among the most embarrassing and career-threatening events that can take place on an IT manager's watch. Nonetheless, we believe that companies and government agencies ought to make public information about lapses in security, not only for the sake of their partners but also for the customers who entrust them with their personal data. In California, the SB 1386 law regulates the maintenance and dissemination of personal information by state agencies and businesses, forcing agencies and companies to publicly notify potential victims of security breaches.
展开▼