chief information security fortuneat 14 that -- hack.about the >> to include probably cooperating with enforcement to get to the bottom of it. there are lawse against not reporting things like this faster. i believe you aren't required to report data breaches within 72 hours. -- you areake more required to report data breaches within 72 hours. wouldn't that make more sense? >> what you are talking about is the european regulation called privacysign to bake in protections for companies that handle personally identifiable information. in europe versus the united states, did the little different. in united states are model is more one of market forces, with perhaps the end of that continuum being legislation. more specifically here in the u.s. we go from market forces the public outcries two executive orders to regulation to legislation. that is a continuum from minimum to harsh. in the european union they start closer to the regulation part of the continuum. they are indeed hefty fines if you have massive breaches of private information. up to 4% of global revenue. emily: bloomberg spoke