New York is the latest state to adopt a law that requires businesses that collect private information on its residents to implement reasonable cybersecurity safeguards to protect that information. New York now joins California, Massachusetts and Colorado in setting these standards. New York’s law mandates the implementation of a data security program, including measures such as risk assessments, workforce training and incident response planning and testing. Businesses should immediately begin the process to comply with the Act’s requirements effective March 21, 2020 ...
Blog Editors
Recent Updates
- Pumping the Brakes: New York Seeks to Curb AI Acceleration in Labor Market
- Video: California Governor’s PAGA Deal: What Employers Need to Know - Employment Law This Week
- Act Now: New York Employers Must Provide Paid Lactation Breaks to Employees
- Supreme Court Overturns Chevron—but for Stakeholders, the Impact Is No Cause for Alarm
- Fifth Circuit Narrows Application of the Crime-Fraud Exception to the Attorney-Client Privilege in Investigations