Time is running out. The effective date of New York’s cybersecurity law mandating that organizations implement an information security program to protect “private information” of New York State residents, including employee and consumer data, is now only 45 days away. New York’s law requires the implementation of a cybersecurity program, including reasonable protective measures such as risk assessments, workforce training and incident response planning and testing. Businesses should immediately take steps to comply with the Act’s requirements effective March ...
New York is the latest state to adopt a law that requires businesses that collect private information on its residents to implement reasonable cybersecurity safeguards to protect that information. New York now joins California, Massachusetts and Colorado in setting these standards. New York’s law mandates the implementation of a data security program, including measures such as risk assessments, workforce training and incident response planning and testing. Businesses should immediately begin the process to comply with the Act’s requirements effective March 21, 2020 ...
Blog Editors
Recent Updates
- Pumping the Brakes: New York Seeks to Curb AI Acceleration in Labor Market
- Video: California Governor’s PAGA Deal: What Employers Need to Know - Employment Law This Week
- Act Now: New York Employers Must Provide Paid Lactation Breaks to Employees
- Supreme Court Overturns Chevron—but for Stakeholders, the Impact Is No Cause for Alarm
- Fifth Circuit Narrows Application of the Crime-Fraud Exception to the Attorney-Client Privilege in Investigations