- Do you do business in the state of New York?
- Does your company have customers or employees who live in New York?
- Are you located in another state or country, but do business in New York?
If you answered yes to any of these questions, then you need to know about the New York SHIELD Act – a new data privacy regulation that affects your business.
In July 2019, the New York State Senate passed the “Stop Hacks and Improve Electronic Data Security” (SHIELD) Act to increase cyber security protections. The law applies to any person or business operating in New York in connection with owning or licensing electronic personal private data.
The SHIELD Act requires companies to have comprehensive programming in place to prevent breaches, have training programs in place, and regularly monitor their controls for effectiveness. The SHIELD Act also significantly expands the definitions of a breach and private information, the companies the law applies to, and the reporting period.
Who does this regulation affect?
- Every business that has employees or customers who live in New York – this includes companies based in other states or countries.
- Even small businesses will need to comply with the new regulation.
ACE IT Solutions’ team of cybersecurity risk management and compliance experts can help you through the process – from start to finish – so you will be in compliance with the New York SHIELD Act.