When New York Governor Andrew Cuomo signed into law the NY SHIELD Act on July 25, 2019, he improved consumer privacy protections. Every business needs to understand the law and implement proper security improvement due to wide-ranging protections.
Officially known as the Stop Hacks and Improve Electronic Data Security (SHIELD) Act, the law upgrades the protection of consumer’s personal and private information as well as upping the consequences for legal violations. Although laws already exist at the federal and state level, SHIELD strengthens them.
The SHIELD law covers three major prongs of business privacy and security requirements. These include:
The specifics each U.S. or foreign business must adhere to include increased security levels and detailed response plans. Here’s what you need to know.
Businesses with customers in NY should have already updated their security measures, but if you have not, get started by contacting BIOS Technologies of New Orleans. Our Louisiana information technology firm has helped numerous businesses update business processes, procedures, and protocols as well as to author appropriate business continuity and disaster response and recovery plans that specifically cover hacks and information breaches. Increasing your computer security protects your company as well as consumers.
BIOS offers managed security services to create better security, implement it, then monitor your systems to stop potential breaches before they reach any personal data. Our IT services include cloud-managed services that increase security as well as security programs that protect your systems from Trojans, ransomware, etc. We also install security programs to protect your emails, conduct data backups, and provide general network and computer security as well as business continuity and disaster-recovery planning.
Although the SHIELD law leaves how security is handled up to each business, it requires you to “implement reasonable safeguards” to protect personal information and access to it. It stipulates that you contract with vendors also using strict security measures and protections.
Each company must designate a security program coordinator (SPC), who administers risk assessments, authors security plans, implements them, and reports hacks and unauthorized access to the NY Attorney General and other appropriate agencies. Companies must turn their security risk assessment process into living procedures and their plans into living documents.
Contact BIOS today to begin better protecting your business and customers. Let us help you meet the SHIELD law requirements.
BIOS Technologies’ mission is to deliver superior IT support to the SMB market in the New Orleans Metro Area. We focus on companies that understand the business/security risks of unmanaged technology and want to maximize efficiency and profitability.