All private institutions must follow basic cybersecurity practices and privacy policy to operate securely in the U.S. and else where. While there are cyber security “frame works” such as is laid out in NIST, this article focuses on describing cyber law for private institutions on the international, federal, and state level. Understanding the legislation around the cyber domain is a key aspect to building a successful business, however, understanding that these laws often “lag” behind the advancement of cyber technology. Adherence to the law in many cases is not enough for cyber security and it is important for businesses to constantly be adding principles and cyber security strategies to ensure the security and success of their enterprise.
