The purpose of disclosing a data breach to a customer is, in theory, to permit the customer (data subject) to take corrective action to mitigate any harm resulting from the breach.
Is mandatory breach disclosure to law enforcement a good idea? It depends on what they are going to do with it. Security Boulevard – Mark Rasch | April 9, 2020