← Back to regulations
Regulation
SEC Cybersecurity Disclosure Rules
17 CFR 229, 232, 240, 249 (Release No. 33-11216)
CybersecurityTech Law
Jurisdiction
United States
Date
Jul 26, 2023
Status
In Force
Source
legaldatahunter
Legislative Body
U.S. Securities and Exchange Commission
Enacted
Jul 26, 2023
Effective
Dec 18, 2023
Type
regulation
Relevance
85%
Summary
Requires public companies to disclose material cybersecurity incidents within four business days on Form 8-K, describe cybersecurity risk management and strategy annually on Form 10-K, and disclose board oversight and management roles in cybersecurity governance.