state of new york

New York DFS Cybersecurity September 2018 Deadline

By Tiffany Quach on September 3, 2018

The New York Department of Financial Services cybersecurity regulation 23 NYCRR 500 (the “Regulation”) came into effect in March 2017 and established four staggered compliance deadlines for its various requirements.

By the third deadline of September 3, 2018, Covered Entities are required to be in compliance with sections 500.06 (audit trails), 500.08 (application security), 500.13 (limitations on data retention), 500.14(a) (training and monitoring), and 500.15 (encryption of nonpublic information).

A Primer on the SHIELD Act: New York’s Move to Adopt More Stringent Data Security Requirements

By Courtney M. Bowman on March 21, 2018

In November 2017, New York Attorney General Eric Schneiderman introduced the Stop Hacks and Improve Electronic Data Security (SHIELD) Act (the “Act”) in the state’s Legislature. Companies – big and small – that collect information from New York residents should take note, as the Act could mean increased compliance costs,…

Proskauer on Privacy

state of new york

New York DFS Cybersecurity September 2018 Deadline

A Primer on the SHIELD Act: New York’s Move to Adopt More Stringent Data Security Requirements

About Proskauer Rose LLP

Topics

Archives