Prior articles in the cyber series have concentrated on what it means to be a covered entity. This article discusses what covered entities must do to comply with New York’s cyber security regulation (23 NYCRR 500). Understanding covered entities Covered entities are...
The New York state Legislature may be right in the middle of budget negotiations, but the Assembly took a break from the budget to pass one of PIANY’s top legislative priorities for the 2024 legislative session. The Assembly passed A.2866—which requires the New York...
Prior articles in the cyber series have concentrated on what it means to be a covered entity. This article transitions into discussing what covered entities that qualify for a limited exemption must do to comply with New York’s cyber security regulation (23 NYCRR...
E-bikes and e-scooters have surged in popularity as efficient, eco-friendly and fun alternatives to traditional vehicles—offering a compelling solution to urban congestion and contributing to the reduction of greenhouse gas emissions. Their accessibility and ease of...
While the Corporate Transparency Act became law on Jan. 1, 2021, you may just be hearing about it now. That is because it became effective as of Jan. 1, 2024, and it has created new business reporting requirements on a federal level for smaller businesses. The law’s...
Prior articles in the cyber series have concentrated on what it means to be a covered entity. This article transitions into a discussion about what covered entities must do to be in compliance with New York state’s cybersecurity regulation (23 NYCRR 500). This...
When New York state’s cyber security regulation (23 NYCRR 500) was amended at the end of 2023, it included the creation of a new type of covered entity referred to as Class A companies. Due to their size, these companies are required to go above and beyond what...
Building on our previous exploration of “covered entities” under New York’s cyber security regulation (23 NYCRR 500), this article delves into another critical aspect: the limited exemption for covered entities. The limited exemption underwent significant changes...
In the rapidly evolving digital landscape, cybersecurity is more crucial than ever. This is particularly true in New York, where the state's cyber security regulation, 23 NYCRR 500, plays a pivotal role. In part two of the PIA’s cyber series, let's delve into a key...
The New York Department of Financial Services cyber security regulation—known as 23 NYCRR 500 by nerds like me—first went into effect on March 1, 2017. This regulation was the first in the nation to regulate the cyber security practices of the financial services...