New York Department of Financial Services Publishes Cybersecurity Regulation
The New York Department of Financial Services (“NY DFS”) has published in the State Register the recently proposed first state regulatory code requiring financial services companies to comply with certain cybersecurity standards. Besides publishing the regulatory code in the State Register, this recent update elaborated on the limited exemptions to the regulation, including specifying covered entities under New York insurance law that do not control, generate, or receive nonpublic information as an exempt entity.