The security of NY consumers’ private information is about to get a boost. The recently passed SHIELD Act (Stop Hacks and Improve Electronic Data Security) has expanded the scope of protection required of persons or businesses handling NY consumers’ data. Starting in late March of 2020, NYS will require companies in all sectors to exercise data security to secure private information of NY consumers.
Effective March 21, NY will require persons or businesses that own or license private information about individuals to develop, implement, and maintain a data security program with “reasonable safeguards” designed to protect the information. An example of the type of information required to be protected is an individual’s name along with a