User Account

All Pages

Determining the appropriate level of data security

Assignment Help Operation Management
Reference no: EM132182833

Write up to 2 Pages:

Instructions

Analyze the fact pattern presented below and submit one double-spaced document to the Chapters 39, 40 and 42 Individual Assignment dropbox folder by the date specificed on the course calendar. Label each question. Use the IRAC approach to help you organize your analysis (state the issue, discuss all relevant laws and legal concepts, apply the relevant legal principles to each hypothetical, and state your conclusion). Your assignment should not exceed three double-spaced pages.

Hypothetical

Risk Corporation has been in operation for the last five years. The corporation provides insurance services to clients. The articles of incorporation describe Risk Corporation's business purpose as "providing inclusive insurance services to homeowners." The corporation recently began offering clients an option to purchase cleaning services. Although all corporate formalities were satisfied during Risk Corporation's incorporation, Risk Corporation's address was listed incorrectly in the incorporation documents.

Due to a recent increase in the number of cyber attacks affecting companies in the local area, Risk Corporation’s board of directors decides to address the issue of data security during its regularly scheduled board meeting. Although board members were not instructed to learn more about the topic prior to attending the board member, board member Ellen Evans decides to do some outside reading before attending the board meeting. In reading about the issue, Ellen learns that damages from privacy breaches are not covered by Directors and Officers insurance. Alarmed, Ellen decides that Risk Corporation should increase its data security measures to reduce the risk that she would face personal liability as a director for damages resulting from a corporate data breach. Ellen encourages other board members to support the adoption of additional cyber security measures based on her fear that the directors could face personal liability if Risk Corporation suffered a data breach.

Without examining data security practices at other companies, Ellen encourages board members to approve a proposal to spend $5,000,000 in additional data security measures. Although board member Steve Stevens encourages the board to spend additional time evaluating the company's data practices before voting on Ellen's proposal, Ellen succeeds in persuading the board members to vote on her proposal. Pressed for time due to a commitment to attend another corporate board meeting following the meeting at Risk Corporation, Ellen persuades the board to vote on her proposal without waiting for late attendees. As a result, the board approves Ellen's proposal while latecomers continue to enter the boardroom.

Although many board members agree with Ellen, board member Phil Phillips votes against her proposal, convinced that the current security spending proposal is inadequate. Although Phil provides data supporting his position, the board approves Ellen's proposal. Concerned about the future implications for Risk Corporation, Phil Phillips contacts his sister, Sandy Phillips, and encourages her to reconsider her investment in Risk Corporation, based on the company's possible exposure to a data security breach. Although Risk Corporation planned to issue a pubic statement about its new security measures, Phil shares Risk Corporation's security spending plans with his sister prior to the public announcement. After learning about Risk Corporation's data security plan, Sandy decides to sells her shares of Risk Corporation stock.

Six months after the board votes to revise Risk Corporation's data security practices, a significant data breach occurs at the company. Many analysts believe that the security breach could have been avoided had the company enacted more sophisticated security measures. In addition, some analysts believe that the board's passive role in monitoring Risk Corporation's data security measures increased the likelihood that a data security breach would result. Had the board taken a more aggressive role in overseeing Risk Corporation's data security, it is possible that the data breach could have been avoided.

As a result of the data breach, customers’ personal and financial data is confiscated, resulting in financial losses of $10,000,000 for Risk Corporation customers. Following the discovery of the data breach, stock prices at Risk Corporation decline.  Shareholders file a derivative action.

Although Risk Corporation notifies customers of the security breach, the company does not notify customers in a timely manner. Risk Corporation notifies customers after two months, in violation of Wisconsin laws. The board does not take an active role in ensuring that customers are notified of the breach in a timely manner.

Instructions

Using the assigned readings and commentaries for Chapters 39, 40 and 42 (Do not discuss issues from other chapters), fully discuss and evaluate the legal issues posed by the above facts. Your analysis should include issues of potential liability.

Does the incorrect address shown in the incorporation documents void the incorporation? Why or why not? Explain using legal principles from the assigned reading.

If the incorrect address does not void the incorporation, could the shareholders be held personally liable for the customers' losses? Why or why not? What additional information would be helpful in answering this question?

If the incorrect address does not void the incorporation, can Risk Corporation offer cleaning services to clients based on its existing articles of incorporation? Why or why not?

If the incorrect address does not void the incorporation, will the board of directors be held liable? Why or why not? Explain using legal principles from the assigned reading.

Does the fact pattern presented above result in a violation of the Securities Exchange Act of 1934? Why or why not? Explain and discuss the specific nature of any violation and apply the relevant legal principles.

In your opinion, should corporate shareholders have a “say” in determining the appropriate level of data security? Why or why not? If shareholders do have input in determining the appropriate level of data security, should this input be advisory in nature? Explain.

Reference no: EM132182833

Questions Cloud

What real property was included in the sale : Was the contract for the sale of the property required to be in writing? What real property was included in the sale?
Did musicnet violate the antitrust laws : Did MusicNet violate the antitrust laws? Why or why not? Explain how your classmate's suggested fact would affect the outcome of the case.
Correct classification of ring for determining ownership : What is the correct classification of the ring for determining ownership? How long does the finder need to keep the ring before acquiring ownership?
Created revolution in urban transportation : Ride hailing, and the application behind it, driven by Uber literally created a “revolution” in urban transportation.
Determining the appropriate level of data security : In your opinion, should corporate shareholders have a “say” in determining the appropriate level of data security?
Advantages and disadvantages of incontestability clause : What are the advantages and disadvantages of an incontestability clause? Explain.
Roberto owned piece of property in fee simple absolute : Roberto owned a piece of property in fee simple absolute. What property rights did Roberto have before he conveyed the property to Tanya?
Evaluate training and development alternatives currently : Evaluate training and development alternatives currently being used at your organization or within a company you are familiar with.
Determine contractual relationship : Which of the following elements would make a court determine a contractual relationship between agent and principle to be as employer-employee?

Reviews

Write a Review

Operation Management Questions & Answers

  Visuals are vital part of marketing communications materials

Describe two ways of identifying, defining a product’s personality. Visuals are a vital part of your marketing communications materials.

  When developing industry-wide codes of conduct

Which groups often collaborate when developing industry-wide codes of conduct? Which of the following actions can a company take to effectively manage diversity

  Appraise plan implementation

Appraise plan implementation, by management, for planning and innovation.

  Illustrate why quality control improvement tool distinguish

Discuss whether or not your organization has optimized these organizational resources for effectiveness also efficiency. Justify your position. Illustrate what quality control improvement tool distinguishes between the important few also trivial ma..

  Quantity discounts-what is the economic order quantity

The UWM Bookstore orders coffee mugs out of a catalog from a supplier. The demand for these coffee mugs is 1,849 per year. There is a $45 charge for placing an order and the cost per coffee mug to hold it in inventory for the year is $2.50. What is t..

  In terms of emergency management

In terms of emergency management, once an exercise is over there are still many things that must be completed. Identify and describe the activities that should be done after an exercise.

  Can the ftc prohibit the use of this commercial

The customers complained to the Federal Trade Commission. Can the FTC prohibit the use of this commercial? Discuss why or why not.

  Compute the maximum inventory

Compute the economics production quantity. Compute the maximum inventory.

  Existing design and functional capabilities

Potential for reuse is determined by comparing the new application requirements to its existing design and functional capabilities.

  Strengths of the various organizational structures

Compare and contrast the strengths of the various organizational structures and explain which organizational structure you would work best in and why. Which organizational structure would be difficult for you to work in? Do you have a work experience..

  Explain a single-time estimate and a triple-time estimate

Please give a detailed explanation of the difference between a single-time estimate and a triple-time estimate.

  Critical components of operations management function

MGMT6003 Operations Management - Identify the critical components of operations management function in differing organisations and clearly demonstrate

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd