Posts Categorized: Data Protection

EU General Data Protection Regulation To Go Into Force

The EU General Data Protection Regulation (the “GDPR”) is scheduled to go into force on May 25, 2018.  The GDPR replaces existing data protection laws throughout the EU, and tightens the requirements that apply to businesses that collect and use personal data.  While a full understanding of the GDPR is beyond the scope of this… Read more »

NY Department of Financial Services Publishes Revised Cybersecurity Rules

As reported previously, the NY Department of Financial Services (the “NYDFS”) published proposed comprehensive cybersecurity rules that would apply to financial institutions holding a state license.  On December 28, 2016, the NYDFS published revised rules, taking into account some, but not all, of the objections to the original rules.  The new rules have a 30… Read more »

NY Department of Financial Services Proposes New Cybersecurity Rules

In September of 2016, the NY Department of Financial Services (the “DFS”) proposed rules to require anyone operating under the NY banking law, insurance law or financial services law (a “Covered Entity”) to adopt a cybersecurity program and a cybersecurity policy, to appoint a chief information officer (a “CIO”), to do penetration and vulnerability testing,… Read more »