Should executives be held responsible for data breaches?

Table of Contents

Share at:

On 27 September, it was announced by the Board of Equifax that CEO Richard Smith amongst other executives had stepped down from their roles following the disclosure of a hacking scandal. It was alleged that the perpetrators gained unauthorised access to sensitive personal data held by Equifax, including social security numbers, birth dates and home addresses. Over 143 million Americans were exposed – nearly half the country’s population.

It was alleged that the hack was possible because Equifax failed to act on warnings to fix a software security problem.

Law Reform: Should executives be held accountable?

The story has been attracting attention for a reason other than just the privacy breach. Those who were responsible face the prospect of walking free. Smith would be able to enjoy his retirement that includes a large pension and other executives would have the benefit of keeping the profit from the sale of stock that they transacted before publicly announcing the breach.

The policy question remains: is it fair for executives to walk free in the face of damage done to millions of Americans?

This was the subject of intense debate in the US Congressional Hearing in Washington which Smith attended on 3 October 2017. Many were of the view that it was not justified that executives not only avoid the repercussions but were able to leave with all the benefits. Sen. Elizabeth Warren pushed for legislative reform that penalises executives and companies that fail to take reasonable measures for cyber safety and that result in public harm.

On the other hand, Smith maintained that punitive measures are not ideal given that the company plays a ‘vital role in the economy.’

Final Thoughts

Whilst the Equifax hacking incident is primarily focused on accountability of fault-bearing executives, another message is clear. In today’s technologically advanced society, hackers are finding more and more ways to access private information. Therefore, especially for data-holding companies, this calls for more advanced countermeasures as well as tech-savvy personnel to reduce the risk of such occurrences taking place.

Let us know your thoughts on the Equifax scandal as well as the frailty of privacy by tagging us #lawpath or @lawpath

Share at:

Simplify creating legal documents today

Browse through Lawpath's AI tools which can be used to draft, review and refine legal documents today!

Related Articles

Company Setup Costs and Tasks in Australia for 2026-2027: A Simple Guide to Business Registration

Are you wondering how much it costs to start a company in Australia? Check out our detailed guide with pro tips inside!

When Are Employees Entitled to Paid Breaks?

Know your rights to paid breaks in Australia. This guide explains Fair Work rules for rest breaks (paid) vs. meal breaks (unpaid) to ensure compliance.

17 Changes Hitting Australian Businesses on 1 July 2026

What July 1 changes affect Australian businesses in 2026? Here’s what to know about super, wages, tax and compliance.

Do I Have to Pay Tax on Distributions From an Irrevocable Trust?

Understand how to pay tax on trust distributions. Ensure compliance and maximise your tax benefits today.

FY26 Dates: Key Deadlines and Milestones You Can’t Miss

Here is your guide to key tax dates in Australia. From BAS lodgement to tax returns, keep these dates in mind to ensure tax compliance.

How Asset Depreciation Works for Australian Small Businesses: A Complete Tax Guide

Confused about asset depreciation this EOFY? We’ve got your back. Our guide covers key rules for small businesses, so you can ensure compliance.