Featured

The Dangers of Regulatory Creep - Do New York DFS Cybersecurity Regulations Apply to Federally Chartered Financial Institutions?

In February 2017, the New York State Department of Financial Services (“DFS”) finalized a new set of cybersecurity regulations that governs New York’s banking, insurance, and financial services industries. Entities in those industries are required to develop and implement cybersecurity programs tailored to their individual risk levels. See Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.§ 500.02.

Continue reading

Featured

ISP Privacy Rule Update: Federal Government Out, State Governments In

The Federal Communications Commission (“FCC”) adopted rules in 2016 that restricted Internet Service Providers (“ISPs”), such as Verizon, AT&T, and Comcast, from sharing sensitive data, including browsing history and location data, without consumer consent. We discussed these groundbreaking rules in our previous blog post.

Continue reading

New NYS DFS Cybersecurity Regulations Going International

The new NYS DFS cybersecurity regulations will have international reach. 

Continue reading

Featured

Yahoo breaches impact on Verizon deal reminds us that cybersecurity is a board concern

Even in today’s day and age, data security issues are sometimes (much too often, in fact) shuffled aside by C-suite executives who are stuck believing that network security is a concern for the IT department, not those who run the company on a day-to-day basis.

Continue reading

Featured

What does NY DFS 23 N.Y.C.R.R. Part 500 really mean to your organization?

Join us May 16, 2017 at our Pathway to Compliance event to get insights into the challenges organizations face in complying with the demanding new requirements.

Continue reading

Disclaimer

This website presents only general information not intended as legal advice. Although we encourage calls, letters and emails from prospective clients, please keep in mind that merely contacting Harter Secrest & Emery LLP (HSE) does not establish an attorney-client relationship between us. Confidential information should not be sent to HSE until you have been notified in writing by HSE that a formal attorney-client relationship has been established. Information sent to us before then may not be treated as confidential by HSE or the court.

I have read this and agree     Cancel