Home > Insights > TCLE > Library > Dealing with Vendors and Data Security

Dealing with Vendors and Data Security


Businesses of all sizes have a multitude of vendor relationships.  These vendors provide a range of services from the use of special or expensive equipment to outsourcing IT or business process functions as well as hosting your data. A growing issue in contracting with vendors is knowing and managing the data security risks associated with the relationship. This webinar will look at basic considerations to keep in mind as you select vendors, and some common issues and contract provisions you may want to consider. Several recent cases will be discussed as they may provide valuable lessons learned.

This webinar will cover:

  • Basic considerations in vendor selection to include: vulnerable service providers; vulnerable industries; offshore operations; and diligence tiers
  • Some common issues and contract provisions to include: SAS 70; dealing with special information such as PII/PHI; business associate agreements;  training; physical safeguards; technical safeguards; indemnity and remediation for data breach; and insurance
  • A review of several recent cases
  • A discussion of working with security consultants

The live presentation of this webinar was approved for 1.0 hour general CLE credit in California and Illinois and 1.2 hours of general CLE credit in Missouri. CLE credit is no longer available for this recording.

Matt Hafter

Originally Presented:
April 12, 2018