Sunday, July 19, 2020

CORPORATE CYBER SECURITY AND THE LAW: TRENDS TO LOOK OUT FOR IN 2020



As the world becomes ever more connected, cyber security has become a prominent key risk faced by many businesses.  It has become increasingly important for organisations to stay ahead of the game by ensuring that its people and the business are as protected as possible.
The effectiveness of an organisation responding to any cyber security threat or incident will be largely dependent on the development of practices and procedures that should also be aimed at strengthening an organisation’s cyber resilience.
As cyber security attackers are becoming more innovative, it is important to be aware of the trends so organisations can protect themselves accordingly. Murfett Legal have identified the following trends, and their legal implications, to look out for in 2020:

CYBERSECURITY AND DIRECTORS’ DUTIES

Company directors are no longer allowed to remain ignorant in regard to cyber security as it is a forefront threat faced by every business. Directors need to be proactive in their approach to cyber security by ensuring they have the necessary knowledge and understanding of cyber security threats to be able to establish and implement the necessary practices to protect the organisation. Without effective practices, including oversight and accountability, organisation’s cyber security governance systems, policies and procedures can be rendered meaningless, leaving the enterprise vulnerable to attack and directors’ can no longer claim ignorance to any allegations and claims made against them.
Data breaches can leave directors and officers of the companies attacked vulnerable to claims i.e. breaches of Privacy Law.
Courts have taken a broad approach in interpreting director’s duties to include many aspects of cyber security, so to ensure directors comply with their duties, directors should, where possible, acquire expert advice and have policies in place to deal with any potential breach and attacks.

THE IOT (INTERNET OF THINGS) CHALLENGE

Simply put, the internet of things is connecting everyday “dumb items” i.e. heaters, lights, etc to a network connected to the internet allowing the items to ‘talk’ to one another. As with any device or network connected to the internet, IoTs are susceptible to the possibility of being hacked. Beyond the data breach that can follow as a result of hacking, there is also the issue of unauthorised surveillance.
The endless possibilities that are available with IoT proves to be a challenge to organisations, not only to keep up with the technology but to also ensure that as the organisation turns ‘smarter’ that process and procedures are in place to ensure that all data and personal information of personnel is also protected.

SHIFTING ATTACK VECTORS & CYBER HYGIENE GROWTH

An attack vector is the ‘path’ that hackers will utilise to gain access to a device or network to penetrate the system. The attack vector is not stagnant and the ongoing shift of attack vectors - from the networks to individual users – is requiring organisations to be vigilant in the management of cyber security. Largely in part by the awareness of many organisations recognising that their personnel (individual users) are often the weakest link.
As a result in the targeting of individuals, organisations need to be engaged in active and ongoing training of personnel to ensure that not only are they aware of cyber threats, but they also know how to deal with threats should they appear.
As personnel are considered to be the weakest link, it is crucial for organisations to have procedures in place to deal with both external cyber threats and internal cyber threats i.e. staff movements.
Courts can impose civil liabilities on an organisation in the event that organisation can be found to have been negligent, such as:
  • an organisation failed to implement the necessary security and safeguards pursuant to regulations and statutes;
  • an organisation failed to mitigate or remedy the damage of the breach; and
  • an organisation fails to notify affected individuals and regulatory of breach notification pursuant to the relevant legislation (i.e. as of 23 February 2018, any breach considered to be ‘eligible data breach’ must be reported to the Office of the Australian Information Commissioner and any potentially affected individuals).
Cost and liability that may be imposed on an organisation, include, but are not limited to:
  • claims and class actions by those affected by the breach, including shareholders;
  • regulatory investigations and penalties; and
  • increase of insurance premiums.
Cyber security is a very real threat to every organisation and it does not discriminate. Organisations can no longer be idle in their approach to cyber security.  They must be proactive in their approach to combatting the threat. There are a number of legal practice areas that need to be addressed when dealing with cyber security (ie Privacy, Employment, Business structure etc). Murfett Legal can provide advice to your organisation in all of these areas and assist in the development of processes and procedures that your organisation needs to stay protected in the connected world of the 21st century.
For further information or assistance contact Murfett Legal on +61 8 9388 3100.
at No comments:

5 THINGS YOU NEED TO KNOW ABOUT PROTECTING YOUR COPYRIGHT IN THE DIGITAL AGE



The digital age has made it easier than ever to copy and distribute a wide variety of material. Images, text, music and audio-visual content can all be reproduced and shared again and again at the click of a button. If your business is the one producing this content, how do you protect your copyright?
One of things we have learnt while talking to clients is that copyright is not very well understood by many Australian business owners, and as such they might be missing out on potential claims. They might also be putting themselves at great financial risk by breaching copyright themselves.
Regardless of the industry of your business, it is worthwhile checking out the following copyright guide. You might learn a valuable lesson in shielding your business against copyright infringements by your competitors or ways to avoid the penalties of copyright infringement yourself.

CAN I CLAIM COPYRIGHT?

If your business creates any original logos, drawings, designs, newsletters, music or audio-visual works - then it’s likely that you are the owner of the original copyright. This affords you legal protection against others using or infringing that copyright in certain circumstances.

WHAT TYPE OF CREATIVE WORK IS COVERED BY COPYRIGHT?

In Australia, for creative work to enjoy copyright protection, it must be in material form (hard copy or electronic) and have a sufficient connection to Australia. The protection afforded includes exclusive economic rights (for a limited time). Copyright in artistic works lasts 70 years from the date of first publication, 50 years for radio & television broadcasts and 25 years for published editions.
Types of work covered include:
  • writing
  • photographs
  • computer programs
  • art and illustrations
  • dramatic and musical works
  • films
  • sounds recordings
  • radio and TV broadcasts
  • publications

WHAT TYPE OF CREATIVE WORK ISN’T COVERED BY COPYRIGHT?

With a few exceptions, copyright law doesn’t protect:
  • ideas, concepts, styles techniques and information
  • names, titles and slogans
  • people and people’s images

WHEN WORK IS COMMISSIONED, WHO OWNS THE COPYRIGHT?

Generally speaking, creative work like company or business drawings, logos, photographs, newsletters and other visual imagery will be protected by copyright. That being said, if you’ve commissioned work from a graphic artist, they might own the copyright (unless you have an agreement to the contrary).
When in doubt as to who owns the copyright to a certain piece of content, and what impact this will have on your ability to reproduce it, it’s highly advisable to consult a lawyer.

WHEN DOES COPYRIGHT INFRINGEMENT OCCUR?

Infringement occurs when another person or business makes copies or exploits a work commercially without the copyright owner’s permission. For copyright infringement to occur, there must be a “substantially similar” reproduction and the subsequent work must have been copied from the original. Creating very similar work independently does not necessarily constitute infringement.

WHAT HAPPENS WHEN YOU CAN PROVE COPYRIGHT INFRINGEMENT?

Once copyright infringement has been proven, there are various avenues of redress that you can pursue. These include:
  • seeking an injunction from the Court restraining the person or company from reproducing the original work
  • seeking an order from the Court to enter the person’s or business’s premises and seizing the offending material
  • commencing court action to claim for damages, an account of profits or delivery up of the infringing article/s.

MURFETT LEGAL IS HERE TO HELP

Given the ease at which digital material can be reproduced and shared, copyright infringement is becoming increasingly common in the Australian business world. Failing to recognise when your copyright has been breached and act on it can hand your competitors an advantage and allow them to benefit from your hard work. As ignorance of the law is no defence, you need to ensure that your business is not guilty of copyright infringement.
If you think you might have a copyright infringement issue to deal with the, get in touch with us today. Our expert team can help clarify things and advise you on the best course of action. 
For further information or assistance contact Murfett Legal on +61 8 9388 3100.
at No comments:
Subscribe to: Posts (Atom)

  WILL THE JOBKEEPER PAYMENT SCHEME EXTENSION CREATE MORE ZOMBIE BUSINESSES The JobKeeper Payment Scheme is currently supporting approximate...