The state’s announcement: The Office of Consumer Affairs and Business Regulation today announced the online public availability of its Data Breach Notification Archive. The Massachusetts Data Security Law (M.G.L. c.93H) requires any entity that keeps a Massachusetts resident’s personal information to notify affected residents, the Office of Consumer Affairs and Business Regulation, and the Attorney…
Category: State/Local
NY financial regulator to delay cyber security rules
Suzanne Barlynne reports: New York’s financial regulator will delay an anticipated Jan. 1 deadline for banks and insurers doing business in the state to comply with controversial cyber security rules, a person familiar with the matter said. The regulator, the New York State Department of Financial Services, will publish a revamped version of its cyber…
CT: Bristol Board of Ed adopts new student data security policy
Susan Corica reports: The Board of Education has adopted a new policy to protect the privacy of student data, to comply with new state legislation. […] Under the new policy, “for any contract that we generate, after Oct. 1 of 2016, we need to have a clause in there that tells us exactly how they…
Bryan Cave Data Security Breach Handbook – 2016
From Bryan Cave, this free resource on Incident Readiness and Response: Since the first publication of this handbook in 2014, the legal ramifications for mishandling a data security incident have become more severe. In the United States, the number of federal and state laws that claim to regulate data security has mushroomed. The European Union has also…
New York State Proposes Cybersecurity Regulation for Financial Services Institutions
Micaela McMurrough, Ashden Fein and Catlin Meade write: On September 13, 2016, New York Governor Andrew Cuomo announced a proposed regulation that would require financial service institutions to develop and implement cybersecurity programs to prevent and mitigate cyber-attacks. The proposed regulation will be subject to a 45-day comment period once it is published in the New York State…
Summer Round-Up: Four States Bolster Data Breach Notification Laws and More Changes on the Way
Michael B. Katz and Cynthia J. Larose of Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C. write: … According to a recent summary published by the National Conference of State Legislatures, more than 25 states in 2016 have introduced or are currently considering security breach notification bills or resolutions. While much legislation remains pending in statehouses across the…