06/25/2025 / Last updated : 06/30/2025 editor 1 Legal

Texas Enacts Cybersecurity Liability Protection for Small Businesses

The new Texas statute erects a shield from liability to protect certain businesses (those under 250 employees) from exemplary damages in a tort action resulting from a data breach. That shield applies only if the business demonstrates that at the time of the breach the entity implemented and maintained a cybersecurity program that meets certain requirements, which may include compliance with a recognized framework (e.g., NIST, ISO/IEC 27001). This is not immunity from all liability—it applies only to punitive damages—but it can be a significant limitation on financial exposure.

This law takes effect September 1, 2025.

Jackson Lewis:
Texas Enacts Liability Shield From Punitive Damages for Certain Small Businesses That Adopt Cybersecurity Programs

Categories
Legal
Tags
Legal

Previous article

Federal Court Vacates EEOC Harassment Guidance on LGBTQ Individuals
05/28/2025
Legal

Next article

ADA Accommodations in the Manufacturing Industry
06/25/2025