Insights & Publications
© 2018 Debevoise & Plimpton LLP
NY Cybersecurity Bill Shows “Reasonable Security” Standard Gathering Force
7 November 2017
View Client Update
New York Attorney General Eric Schneiderman has announced a proposal to broaden New York’s breach disclosure requirements and require that all businesses, breached or not, adopt “reasonable” cybersecurity measures.
The proposal is part of a trend, both in the U.S. and globally, towards requiring that businesses have “reasonable security” in place, including dedicated internal data security programs, risk assessments, and regularly tested technical and physical safeguards.
This new proposal may not become law, but it still matters. The New York AG regularly brings enforcement actions, and his proposal closely resembles requirements advanced by other states and federal agencies.
Cybersecurity & Data Privacy
White Collar & Regulatory Defense
Christopher S. Ford
The EU Blocking Regulation: compliance programmes for US and EU companies
European Funds Comment: UK Limited Partnership Law Reform
European Funds Comment: Reporting Emissions in the UK: Further Disclosures Coming
Model Charters Issued for Russian Limited Liability Companies
Joint Stock Company
UK Modern Slavery Act Transparency Statement
Debevoise Women's Review