In the year following the Equifax breach, cybersecurity has moved even further toward the forefront of executives’ and consumers’ minds, and with it has come a slew of regulation for companies and their legal departments to consider.

Back in July 2017, Equifax was the victim of a major cyberattack that exposed the personal information of 146 million Americans, some of whom were unaware that the company had their data at all. To exacerbate the problem, the company did not disclose the breach to the public until September of last year.