Drafting Data and Cybersecurity Provisions in Third-Party Vendor Agreements: Limits to Liability, Indemnification
Recording of a 90-minute CLE video webinar with Q&A
This CLE webinar will discuss the risks in utilizing outside service providers as data processors. The panel will address the need for routine audits, assessments, and training, as well as how the contract should address data protection requirements and standards, breaches, and indemnification.
- Data processor agreements
- Vetting vendors
- Response plan
- Notification periods
- Limitations on liability
- Cyber insurance
The panel will review these and other key topics:
- How should general counsel develop a vendor inventory for data processors?
- What requirements for limitations of liability should counsel include in data processor vendor agreements?
- What are best practices for auditing third party vendors?
Aaron K. Tantleff
Foley & Lardner
Mr. Tantleff focuses on providing legal and strategic guidance regarding information technology, outsourcing,... | Read More
Mr. Tantleff focuses on providing legal and strategic guidance regarding information technology, outsourcing, licensing, consulting, professional services, e-commerce, manufacturing, supply, and distribution agreements, as well as product acquisitions, strategic alliances, mergers and acquisitions, and private equity investments where technology and intellectual property are of significant importance. Mr. Tantleff is a frequent speaker on technology, security, privacy and outsourcing matters and is regularly quoted in The Wall Street Journal, Reuters, Politico, Fortune, and other top-tier publications on topics such as cyberattacks, privacy law developments, and data protection, including regarding the General Data Protection Regulation and Asia Pacific Cross Border Privacy Rules. Mr. Tantleff has been retained for data protection, cybersecurity, monetization of big data/IoT programs, and data breach response, remediation and simulations by companies across all industries and sizes, domestically and abroad.Close
Elizabeth B. (Beth) Waller
Chair, Cybersecurity and Data Privacy Practice
Woods Rogers Vandeventer Black
Ms. Waller is a cybersecurity and data privacy attorney who uses her significant experience in technology to counsel... | Read More
Ms. Waller is a cybersecurity and data privacy attorney who uses her significant experience in technology to counsel clients on cybersecurity risk management, incident response, and privacy laws. As Chair of the firm’s Cybersecurity and Data Privacy Practice, her experience on the intersection of technology and the law is extensive. Ms. Waller is a Certified Information Privacy Professional with both U.S. and Europe designations (CIPP/US & CIPP/E) and a Certified Information Privacy Manager (CIPM) from the International Association of Privacy Professionals. Clients ranging from Fortune 200 companies to municipalities and universities, and spanning industries such as manufacturing, healthcare, banking, and energy depend on Ms. Waller for advice and counsel on risk management, data security, and regulatory compliance. She also advises clients in high-tech fields such as biotechnology and software development and has worked with clients pioneering new technologies such as blockchain and IoT devices. Ms. Waller specializes in critical infrastructure cybersecurity incident response, with experience leading teams bringing complicated systems back online after cyber attacks. She has led cyber crisis management responses across different industries and has experience with the intersection of NERC CIP, GLBA, and HIPAA with cybersecurity incident response.Close