There's a Reason GCs Are Paid Well
A few things every general counsel should remain concerned about as we enter the second half of the year.
August 21, 2019 at 12:15 PM
6 minute read
The original version of this story was published on Corporate Counsel
Use of company cars, prompt responsiveness from outside counsel, prestige, not to mention compensation—these are just a few of the perks of being a general counsel. But with perks, as they say, come great responsibility. A GC is much like the captain of a ship, with all the responsibilities of seeing it to safety through uncertain and sometimes treacherous waters, most of all avoiding the icebergs that could lead to disasters of Titanic proportions.
It's not always possible to know in advance when the ship (your company) is approaching an iceberg, but a good captain (GC) prepares and knows how to steer the ship around them by anticipating legal problems and dealing with them before the company takes on water. In today's climate, the three biggest icebergs that haunt companies and keep GCs up at night are: sexual harassment, employee misclassification and cybersecurity attacks.
Beyond the Criminal Case
When an individual executive such as Harvey Weinstein faces allegations of sexual misconduct, the legal troubles are many, but they don't end with the individual's trial. Earlier this year a court in New York City ruled that criminal charges against Weinstein would not be dismissed and, regardless, the financial risk to companies could remain high long after a sentence has been handed down. The Weinstein Co. and CBS continue to deal with the fallout from the conduct of Harvey Weinstein and Leslie Moonves, respectively. In 2018, for instance, CBS was hit with a shareholder class action arguing that the company misled investors when it failed to disclose sexual harassment allegations against Moonves.
The #MeToo movement has brought many bad actors to light, but GCs should not wait for an accusation to surface before taking action. There are many steps GCs can take to proactively fend off this significant exposure. A good start would be to make sure the company's human resource policies and employee manuals are in order, provide annual anti-harassment training, which is now mandatory in New York, and make sure the company has sufficient employment practices liability insurance (EPLI) in place.
Getting Classifications Correct
This past May, New Jersey Gov. Phil Murphy signed an executive order establishing a task force on worker misclassification. Less in the headlines than sexual harassment, but equally damaging to a company, worker misclassification covers two types of claims: improperly labeling employees as independent contractors, and incorrectly designating employees as exempt from overtime when they do not fall under one of the three white collar or other lesser-known exemptions. These cases, often brought as collective actions under the Fair Labor Standards Act or as Rule 23 class actions, recently have been filed in record numbers, and more are likely to follow. EPLI typically does not cover these types of claims (although some companies offer an endorsement to EPLI policies that cover defense costs relating to these types of claims). GCs, therefore, need to get ahead of this issue. They should retain counsel to review classification issues, consider using or revising contracts with independent contractors and employees, and including arbitration clauses with class action waivers although these are currently under attack.
Preparing for and Remediating Breaches
Marriott Hotels (330 million records exposed), Exactis (340 million records exposed), Under Armour (150 million records exposed), MyHeritage (92 million records exposed), and Facebook (87 million to 1 billion records potentially exposed) are just some of the companies this year that suffered cyberattacks disrupting businesses, costing them upwards of tens of millions of dollars. The frequency and severity of ransomware and data breaches continue to increase. Email addresses, physical addresses, phone numbers and in some cases even passport numbers have been publicly exposed. Other companies were victims of ransomware attacks, which doubled in frequency year-over-year according to Verizon's annual Data Breach Investigations Report. Reported ransomware attacks, in which company data is encrypted and held for ransom in exchange for payment (routinely in cryptocurrency), include electronic health record processing company Allscripts and the city of Atlanta.
As a result, legislators have taken action. Current and newly effective laws and regulations include: data breach notification requirements now effective in every state, New York's newly effective Cybersecurity Requirements for Financial Companies (23 NYCRR 500), federally imposed notification requirements pursuant to HIPAA, and for those companies and individuals who envisage using or collecting certain personal information from many European residents, the General Data Protection Regulation (GDPR). In 2020 California's newly passed data privacy act will also impose additional burdens and potential liability for those companies collecting or using consumers' personal information.
This increase in cyberattacks, coupled with heightened legal requirements and potential liability, means that companies must maintain cyber vigilance, and implement and monitor appropriate security controls (technology), developing and enforcing uniform policies (incident response, computer and permissible internet usage) and training to minimize the risk of business disruption, lost revenues, and significant fines and litigation expenses. GCs should take a proactive stance and engage both competent technological assistance as well as counsel with the breadth of experience and knowledge to develop preventive policies and processes designed to minimize the potential for breach, and remedial policies and processes to remediate and mitigate the effects of any cybersecurity incident.
With new technologies, increased speed of information and evolving legislation, GCs face more challenges than ever to keep their companies out of harm's way. It is therefore incumbent upon GCs to remain ever more diligent, and with some proactive efforts, they can do much to mitigate these significant risks and their related, potentially multi-million-dollar, damage exposure.
Steven Adler, co-chair of Mandelbaum Salsburg's labor and employment law practice group and co-chair, elect of the litigation department, has primarily represented management in all types of employment-related litigation, including age, race, sex and disability discrimination lawsuits, as well as lawsuits involving harassment, restrictive covenants, wage-and-hour disputes, trade secrets and ERISA withdrawal liability cases during his over 35 years of practice. Adler also provides day-to-day guidance to management on all types of personnel issues.
Steven W. Teppler, chair of the firm's privacy and cybersecurity practice group, has been involved in cybersecurity and electronic discovery matters since 2000 including the Target data breach (representing the Illinois consumer plaintiff). He teaches information security at the University of South Florida as a Professor of Practice, and also teaches electronic discovery at the Nova Southeastern University Shepard School of Law.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllAdvising 'Capital-Intensive Spaces' Fuels Corporate Practice Growth For Haynes and Boone
4 minute readHomegrown Texas Law Firms Expanded Outside the Lone Star State in 2024 As Out-of-State Firms Moved In
5 minute readEnergy Lawyers Working in Texas Expect Strong Demand to Continue in 2025 Across Energy Sector
6 minute read'So Many Firms' Have Yet to Announce Associate Bonuses, Underlining Big Law's Uneven Approach
5 minute readTrending Stories
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250