NYS AG announces SHIELD Act legislation for data breaches protection

Tuesday 18 June 2019 11:35 CET | News

The New York Attorney General has announced the Stop Hacks and Improve Electronic Data Security Act, a new cybersecurity law, which passed the state legislature.

The law aims to boost disclosure requirements and to strengthen consumer protections in the case of a data breach. The Stop Hacks and Improve Electronic Data Security Act (SHIELD) puts additional responsibilities on companies that collect personal data.

Under the newly passed bill, the definition of a breach includes information that an unauthorised person gains ‘access’ to, and not just information that an unauthorised person ‘acquires.’ Also, it requires a company to comply if they have any information belonging to a New York resident, beyond just a company doing business in New York. The bill expands the scope of the data notification law to require disclosure of biometric information, passwords, email addresses, and security questions.

Free Headlines in your E-mail

Every day we send out a free e-mail with the most important headlines of the last 24 hours.

Subscribe now

Keywords: NYS AG, US, legislation, protection, consumers, data breaches, SHIELD Act, cybersecurity, law, regulations, personal data, bill, biometrics, passwords, security
Countries: World