New York is the latest state to adopt a law that requires businesses that collect private information on its residents to implement reasonable cybersecurity safeguards to protect that information. New York now joins California, Massachusetts and Colorado in setting these standards. New York’s law mandates the implementation of a data security program, including measures such as risk assessments, workforce training and incident response planning and testing. Businesses should immediately begin the process to comply with the Act’s requirements effective March 21, 2020 ...
Our colleague Mollie K. O’Brien at Epstein Becker Green wrote an advisory on a new law that will increase the protection of personal information under HIPPA by mandating encryption on all computerized data collected by health insurance carriers: “Beyond HIPAA: New Jersey Law Requires Encryption of Personal Data by Health Insurance Carriers.” Following is an excerpt:
In response to data breaches that have occurred across the United States, several of which involved the theft of laptop computers, beginning August 1, 2015, health insurance carriers in New Jersey will be ...
Blog Editors
Recent Updates
- Pumping the Brakes: New York Seeks to Curb AI Acceleration in Labor Market
- Video: California Governor’s PAGA Deal: What Employers Need to Know - Employment Law This Week
- Act Now: New York Employers Must Provide Paid Lactation Breaks to Employees
- Supreme Court Overturns Chevron—but for Stakeholders, the Impact Is No Cause for Alarm
- Fifth Circuit Narrows Application of the Crime-Fraud Exception to the Attorney-Client Privilege in Investigations