The New York Stop Hacks and Improve Electronic Data Security (SHIELD) Act updated and expanded the state’s data breach notification requirements and introduced new and broad privacy and cybersecurity requirements that exceed those imposed by most other states around the country. In the latest episode of the Faegre Drinker on Law and Technology Podcast, Jason G. Weiss sits down with Peter Baldwin for insight into a number of questions regarding this sweeping new law.
Discussion points include:
- What is the New York SHIELD Act and why is it important?
- What data breach notification requirements did the SHIELD Act introduce?
- How do they compare to requirements in other states? How does the SHIELD Act define a data breach?
- What companies are impacted by the SHIELD Act?
- What should companies know about the SHIELD Act’s sweeping cybersecurity regulations? What will regulators expect of regulated and unregulated entities when building a SHIELD Act-compliant cybersecurity program?
- What are the potential penalties and enforcement scenarios for non-compliance with the SHIELD Act?