5 Things SaaS Companies Should Consider Doing to Prepare for Data Breaches: Lessons From More Than $50M in Liability


6 minute read | February.23.2024

Protecting the brand and mitigating legal risk from cybersecurity threats is difficult for any organization, but the task is particularly complex for SaaS businesses.

Companies should consider taking five steps to mitigate legal and reputational risk and comply with an array of state and federal rules and regulations, Orrick’s Joseph Santiesteban, Aravind Swaminathan, Hannah Levin and Cosmas Robless say in a new article in Law360.

They explore state and federal enforcement actions against a provider of education and nonprofit software to share lessons that can help SaaS companies manage an increasingly common form of data breaches.