Data Breach Mitigation - Compliance is required by LAW.

What do you do if your customers data is taken?

Do you know what federal and state laws require?

Do you have a rapid response team in place to deal with the breach?

Organization that are compliant with the FTC's Gramm-Leach-Bliley Safeguards regulations can usually qualify for data breach insurance ... think about it.

As of September 2008 - Forty-Five states, the District of Columbia, Puerto Rico and the Virgin Islands have enacted legislation requiring notification of security breaches involving personal information!

The average cost can be hundreds of dollars per record in a breach
mitigation ...

The National Conference of State Legislatures (NCSL) has a listing of
laws by state at;

http://ncsl.org/programs/liscip/priv/breachlaws.htm

You will find an alphabetical listing of the states and a link to the State Security Breach Notification Laws.

GLB compliance is a good thing from just a business point of view.