As states and federal agencies alike are increasingly scrutinizing organizations’ privacy practices, recent regulations and enforcement actions are forcing organizations to relearn how much—and when—they’re legally required to disclose data breaches and cyber incidents.

During a Seattle KnowledgeNet Chapter meeting on April 27, panelists highlighted some of the most pressing information security considerations under U.S. privacy laws as well as some new disclosure requirements from agencies.