Is your business at risk due to possession of personal or private information?
The New York Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) or Senate Bill 5575, was enacted on July 25, 2019 as an amendment to the New York State Information Security Breach and Notification Act. The law goes into effect on March 21, 2020.
Failure to comply with the SHIELD Act could result in civil penalties up $250,000!
This law applies to you if your business stores or processes personal or private information.
The SHIELD Act defines personal information as any information concerning a natural person which, because of name, number, personal mark, or identifier, can be used to identify them.
The SHIELD Act defines private information as:
- Any personally identifiable information (PII) such as name, number or other identifier coupled with social security number, driver’s license number or non-driver identification card number, account number, credit card or debit card number in combination with any security code, access code, password or other information that would permit access to the individual’s financial account, or account number, credit card or debit card number if the individual’s financial account can be accessed without additional information
- Biometric information such as fingerprint, voice print, retina or iris image, or other unique physical representation or digital representation of biometric data which is used to authenticate or ascertain an individual’s identity
- A username or email in combination with a password or security question and answer that would permit access to an online account.
If the answer is yes, Executive Computing, LLC is here to assist you with the technical, administrative, and physical controls to eliminate the possibility of a data breach.