The athletic wear company Under Armour disclosed that data tied to its fitness app was breached in the year 2018, affecting 150 million user accounts. The stolen information included usernames, email

The athletic wear company Under Armour disclosed that data tied to its fitness app was breached in the year 2018, affecting 150 million user accounts. The stolen information included usernames, email addresses and hashed passwords, the company said.

Under Armour said that the breach occurred in February, but the company discovered the hack on March 25. Four days later, Under Armour said it began notifying users. The company said it is continuing to investigate the incident and coordinating with law enforcement and "leading data security firms." It is not yet known who is behind the breach.

For this Paper I need with at least 3 pages 

1.Discuss the U.S. compliance laws and regulations that the organization is required to be complaint with. 

2. Recommend one access control security policy best practice that the organization should implement.

TextBook: Chapple, Mike, Ballad, Bill, Ballad, Tricia, and Banks, Erin K. Access Control, Authentication, and Public Key Infrastructure, Second Edition. Jones & Bartlett Learning, 2016, ISBN: 978-1-284-03159-1