Home/The Need for Cybersecurity and Privacy Due Diligence in M&A Transaction

The Need for Cybersecurity and Privacy Due Diligence in M&A Transaction

The Need for Cyber Due Diligence in M&A Transactions

As technology continues to advance, allowing more companies to collect, share, and use data, privacy and cybersecurity due diligence in the M&A context becomes even more important. Unfortunately, companies often ask boilerplate questions about cybersecurity, privacy, and data without understanding the particular risks associated with the target company.

A lack of due diligence in evaluating a company’s cybersecurity controls and privacy requirements during the M&A process can result in a host of short-term and long-term problems. This may include subsequent data breaches or privacy complaints, loss of business revenues, higher cybersecurity premiums, underperforming stock value, and loss of consumer confidence.

Read the full article, written by Melissa Ventrone, Attorney at Clark Hill in Chicago.

About the Author:

Melissa Ventrone
Melissa K. Ventrone is a Member of the firm Clark Hill PLC, in the Chicago office where she addresses her clients’ cybersecurity needs. She reacts swiftly and decisively when she is enlisted on a cybersecurity breach. As a Co-chair of the cybersecurity breach response team, she focuses her experienced group of first responders, including lawyers and forensic investigators, on around-the-clock management of the situation and minimizing damage by working to limit any public or regulatory fallout. When not managing her clients’ urgent breach concerns, Melissa is a proactive consultant in managing data privacy and security risks. She is also a zealous courtroom advocate in cybersecurity litigation. Melissa is a Certified Informational Privacy Professional (CIPP/US).