Wednesday, April 13, 2022 | 1 pm ET | 10 am PT
Cybersecurity has never been more important for the aviation industry. Airlines and airports routinely collect sensitive data from employees, partners, travelers, and other sources. This data includes video surveillance images, financial information, personal health information, biometrics, and other types of Personally Identifiable Information that would be a boon to any identify thief or cybercriminal. In addition, all aviation businesses, from airline and airport vendors to maintenance and repair stations, have confidential contracts and other information that must be protected.
While access to this information is vital and inescapable, failure to protect it is also a source of compliance headaches, risk management/insurance complications, public relations nightmares, and massive liability exposure. If this data escapes or is otherwise compromised, ramifications include class action lawsuits, civil penalties and enforcement actions, and claims for breach of contract for failure to protect proprietary information. The first hours and days after an attack are critical to mitigating the fallout.
Over the past 5 years, there have been numerous examples of such incidents. For example, in 2017, an employee at Heathrow Airport lost a USB key containing 76 folders and more than 1,000 confidential files containing sensitive personal data including the names, dates of birth, and passport numbers of ten people, the personal data of up to 50 Heathrow aviation security personnel, and potential national security information. Similarly, several airlines have had data breaches involving hundreds of thousands of customers and, in one recent incident, involved the release of a decade of passenger personal information.
On June 15, 2022, join Fox Rothschild aviation team members Morgan Campbell, Kristen Broz, and Mark McKinnon for a complimentary 1-hour webinar to discuss recent developments in cybersecurity and privacy protection and how you can avoid this growing threat. The topics we will discuss include:
- Preparing for an attack or other cybersecurity incident
- Risk management/insurance considerations
- Responding to an attack or other cybersecurity incident
- Dealing with FAA and other government agencies post-breach
- Breach notifications and legal compliance issues
- Operational and governance considerations
- Sources of liability and how to mitigate them
- Review of recent incidents and lessons learned
- Reputational considerations
As always, we look forward to answering your questions as part of our frank discussion of the issues.