A Practice Note addressing the key issues organizations and their counsel must consider to comply with the legal duty to preserve relevant data following a data breach or other cyber incident when the organization knows about, or reasonably anticipates, litigation or a government investigation. This Practice Note provides guidance for organizations facing a cyber incident or data breach regarding when to reasonably anticipate litigation, the steps to take to preserve documents, and the types of data to preserve.