Investigating security breaches and managing contracts with third parties

You receive a call from your IT team; someone has noticed odd access patterns to one of your key databases containing key confidential information, some of which belongs to third parties who you contract with. Some more checking and analysis takes place and within a few hours, you know with reasonable certainty that someone has been and still is, accessing your and your business partners’ confidential data.

At this stage, you probably have some information but in terms of the total information available about the problem, at this point in time, you probably don’t know that much. It is important to work quickly with IT, the commercial teams who work with the data in question and senior management to understand as much as you can in the next 12–24 hours so that you can decide what to do next.

This might appear obvious — surely just cut off the access to your data? This route ‘solves’ the immediate problem, and may in some cases be the correct approach. However, it means risking severely limiting the amount of information that you can obtain about the breach. In turn, this limits the information you have available to work out the identity of and, if appropriate, pursue the wrongdoers and to feed information about the problem back into the business to improve security. Information security is not just about IT security — it encompasses the whole business and all employees. In those very early hours of working out the scope of the problem, it is also key to review contracts you have with third parties that may give rights to those third parties in relation to data and information security…

If you are registered and logged in to the site, click on the link below to read the rest of the Taylor Wessing briefing. If not, please register or sign in with your details below.

Sign in or Register to continue reading this article

Sign in


It's quick, easy and free!

It takes just 5 minutes to register. Answer a few simple questions and once completed you’ll have instant access.

Register now

Why register to The Lawyer


Industry insight

In-depth, expert analysis into the stories behind the headlines from our leading team of journalists.


Market intelligence

Identify the major players and business opportunities within a particular region through our series of free, special reports.


Email newsletters

Receive your pick of The Lawyer's daily and weekly email newsletters, tailored by practice area, region and job function.

More relevant to you

To continue providing the best analysis, insight and news across the legal market we are collecting some information about who you are, what you do and where you work to improve The Lawyer and make it more relevant to you.

Briefings from Taylor Wessing

View more briefings from Taylor Wessing

Analysis from The Lawyer

  • merger deal

    Corporate crunch time: who will triumph at The Lawyer Awards 2014?

    As the equity capital markets rocketed back into favour and global M&A saw at least a partial return to form, there have been some rich pickings for The Lawyer’s Corporate Team of the Year award shortlisted firms in 2014. 

  • singapore orchid

    Singapore: Cash course

    The city-state is working hard to become a global wealth management hub, and law firms are gearing up for a prosperous new world

View more analysis from The Lawyer


5 New Street Square

Turnover (£m): 241.20
No. of lawyers: 860 (UK 200)
Jurisdiction: UK
No. of offices: 6
No. of qualified lawyers: 73 (International 50)
No. of partners: 29