This article in the cyber series is for those individuals who may lack a significant physical or financial presence in New York state. Just because a person lacks a physical or financial presence in the state though, does not mean that the New York cyber security...
Prior articles in the cyber series have concentrated on what it means to be a covered entity. This article discusses what covered entities must do to comply with New York’s cyber security regulation (23 NYCRR 500). Understanding covered entities Covered entities are...
Prior articles in the cyber series have concentrated on what it means to be a covered entity. This article transitions into discussing what covered entities that qualify for a limited exemption must do to comply with New York’s cyber security regulation (23 NYCRR...
Prior articles in the cyber series have concentrated on what it means to be a covered entity. This article transitions into a discussion about what covered entities must do to be in compliance with New York state’s cybersecurity regulation (23 NYCRR 500). This...
When New York state’s cyber security regulation (23 NYCRR 500) was amended at the end of 2023, it included the creation of a new type of covered entity referred to as Class A companies. Due to their size, these companies are required to go above and beyond what...
In 2023, PIANY fiercely advocated for passage of legislation that would increase consumer protections during the automobile insurance underwriting process. PIA was successful in its efforts when New York Gov. Kathy Hochul signed into law S.5764-B, which takes aim at...
While PIANJ may have faced challenges in advancing the association’s top priority—a ban on the use of step-down provisions in personal auto policies—your association’s efforts during the 2022-23 session were not in vain. The organization has seen widespread success in...
Building on our previous exploration of “covered entities” under New York’s cyber security regulation (23 NYCRR 500), this article delves into another critical aspect: the limited exemption for covered entities. The limited exemption underwent significant changes...
In the rapidly evolving digital landscape, cybersecurity is more crucial than ever. This is particularly true in New York, where the state's cyber security regulation, 23 NYCRR 500, plays a pivotal role. In part two of the PIA’s cyber series, let's delve into a key...
The New York Department of Financial Services cyber security regulation—known as 23 NYCRR 500 by nerds like me—first went into effect on March 1, 2017. This regulation was the first in the nation to regulate the cyber security practices of the financial services...