Time is running out. The effective date of New York’s cybersecurity law mandating that organizations implement an information security program to protect “private information” of New York State residents, including employee and consumer data, is now only 45 days away. New York’s law requires the implementation of a cybersecurity program, including reasonable protective measures such as risk assessments, workforce training and incident response planning and testing. Businesses should immediately take steps to comply with the Act’s requirements effective March ...
New York is the latest state to adopt a law that requires businesses that collect private information on its residents to implement reasonable cybersecurity safeguards to protect that information. New York now joins California, Massachusetts and Colorado in setting these standards. New York’s law mandates the implementation of a data security program, including measures such as risk assessments, workforce training and incident response planning and testing. Businesses should immediately begin the process to comply with the Act’s requirements effective March 21, 2020 ...
Blog Editors
Recent Updates
- New York State’s Retail Worker Safety Act – New Obligations for Retail Workers Coming in 2025
- Courts Stay Consistent on Title VII’s Participation Clause, but the EEOC Has a Different Take
- Video: Mental Health Parity Rules, NLRB Restrictions, New York's Workplace Violence Prevention Law - Employment Law This Week
- U.S. Department of Labor Publishes New “AI & Inclusive Hiring Framework”
- Video: NLRB’s Expanding Power - Pushback and Legal Challenges Ahead - Employment Law This Week