Expert Comments

Expert On New York’s Shield Act

Expert(s): Security Experts
Expert(s): Security Experts

A major provision of New York’s Shield Act has just gone into effect that broadens the scope of consumer privacy and data security protection and goes much further that other current data privacy laws.

Experts Comments

March 24, 2020
Dov Goldman
Director of Risk & Compliance
Panorays
It's natural to compare the NY Shield Act to CCPA and GDPR. Like CCPA, the Shield Act includes biometric data in its purview. Like GDPR, the Shield Act broadly defines coverage to be any company having data of residents in its geographic scope. Unlike either of these earlier privacy regulations, however, the Shield Act mandates a "reasonable security" program, and goes on to define quite specifically what that means. It includes identifying external risks and implementing a vendor cybersecurity .....Read More
It's natural to compare the NY Shield Act to CCPA and GDPR. Like CCPA, the Shield Act includes biometric data in its purview. Like GDPR, the Shield Act broadly defines coverage to be any company having data of residents in its geographic scope. Unlike either of these earlier privacy regulations, however, the Shield Act mandates a "reasonable security" program, and goes on to define quite specifically what that means. It includes identifying external risks and implementing a vendor cybersecurity due diligence program that ensures providers are able to maintain safeguards. The Shield Act departs significantly from CCPA and GDPR by mandating notification for "unauthorized access to private information," where the other laws only require it when there is an actual breach. But where NY Shield Act may have its greatest impact is the enforcement authority it empowers: the NYS Attorney General. NY's chief legal office has a history of aggressive legal action, and for this reason, companies that are "in scope" for this very well-crafted new privacy law will be well advised to pay attention!  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.
SUBMIT

You may also like

Booz Allen Report On CISOs And China Quantum Computing Risks,...

Experts Reactions On Sky Broadband Hack Warning

Ransomware Set To Break Records This Black Friday 2021

The Changing Face Of The COO Role

Security Expert On Apple Suing NSO Group

Meta Delays Plans To Rollout End-to-end Encryption

NCSC Issues Black Friday Warning To Tetailers

How The Zelle Fraud Scam Steals Your Bank Credentials

GoDaddy Data Breach Impacts Over A Million Users, Experts Reactions

Utah Imaging Data Breach – Expert Comments

Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics

Twitter Facebook-f Linkedin Youtube

Working With Us

The Pages

Our Contributing Experts