NYDFS Cybersecurity Regulations Nearly Fully Effective

September 4, 2018 marks the end of the transitional period for covered entities to comply with several key provisions of the NYDFS Cybersecurity Requirements that require certain systemic and sustained measures. These provisions include the encryption and audit trail requirements as well as ones relating to the implementation of monitoring policies, procedures, and controls, application security, and data retention limitations. Encryption (500.15): The regulation requires covered entities to encrypt Nonpublic Information held or transmitted by a covered entity both in transit over external [...] Read more

The post NYDFS Cybersecurity Requirements Compliance Deadline Nears for Key Provisions appeared first on Alston & Bird Privacy Blog.

Our Privacy, Cyber & Data Strategy and Privacy & Cybersecurity Litigation teams examine the New York Department of Financial Services’ finalized Second Amendment to its Cybersecurity Regulation.

Keep up with what’s happening in privacy, data security, and all things cyber – from California’s CCPA, CPPA, and CPRA to FTC and SEC actions to EU #GDPR guidance – from our Privacy, Cyber & Data Strategy Group.

Keep up with what’s happening in privacy, data security, and all things cyber  – from Log4j to multifactor authentication to EU clinical trial rules – from our Privacy, Cyber & Data Strategy Group.

A legal update on privacy, data security, and all things cyber by the attorneys of Alston & Bird.