As discussed in our previous post, on April 12, 2018, Governor Andrew Cuomo signed into law the New York State Budget Bill which included “the nation’s most aggressive anti-sexual harassment agenda.” The draft guidance issued by the State on August 23, 2018 provided several significant policy and training requirements to address workplace sexual harassment. Yesterday, the Governor announced the release of the finalized materials and guidance after an active public comment period and some noteworthy adjustments were made to the draft guidance.
You don’t have to be a user of its ride-sharing services to know that in 2016, Uber was the victim of a massive data breach involving the theft of personal information belonging to about 57 million of its riders and drivers, including names, phone numbers, and driver’s license information.
On May 24, 2018, the President signed the Economic Growth, Regulatory Relief, and Consumer Protection Act (the “Act”) into law, adding new Fair Credit Reporting Act (“FCRA”) required notices. The changes primarily impact consumer reporting agencies (“CRAs”) rather than employers, but one change adds a new required notice whenever a Summary of Consumer Rights is required by the FCRA’s Section 609.
This fall, I have the pleasure of teaching a course on Information Security Policy and Law at the Rochester Institute of Technology Golisano College of Computing and Information Sciences. When I was asked to teach, I welcomed the opportunity, because the course is directed at graduate level cybersecurity students, who don’t often get exposure to the legal and regulatory side of the cybersecurity equation.