Assembly Actions -
Lowercase Senate Actions - UPPERCASE |
|
---|---|
Jan 08, 2020 |
referred to insurance |
Jan 14, 2019 |
referred to insurance |
Assembly Bill A1185
2019-2020 Legislative Session
Sponsored By
CAHILL
Archive: Last Bill Status - In Assembly Committee
- Introduced
-
- In Committee Assembly
- In Committee Senate
-
- On Floor Calendar Assembly
- On Floor Calendar Senate
-
- Passed Assembly
- Passed Senate
- Delivered to Governor
- Signed By Governor
Actions
co-Sponsors
Barbara Lifton
Donna Lupardo
2019-A1185 (ACTIVE) - Details
2019-A1185 (ACTIVE) - Bill Text download pdf
S T A T E O F N E W Y O R K ________________________________________________________________________ 1185 2019-2020 Regular Sessions I N A S S E M B L Y January 14, 2019 ___________ Introduced by M. of A. CAHILL, LIFTON, LUPARDO -- read once and referred to the Committee on Insurance AN ACT to amend the insurance law, in relation to authorizing continuing care retirement communities to adopt a written cybersecurity policy THE PEOPLE OF THE STATE OF NEW YORK, REPRESENTED IN SENATE AND ASSEM- BLY, DO ENACT AS FOLLOWS: Section 1. Section 1119 of the insurance law is amended by adding a new subsection (d) to read as follows: (D) SUCH ORGANIZATION MAY ADOPT A WRITTEN CYBERSECURITY POLICY THAT IS DESIGNED TO PROTECT THE CONFIDENTIALITY, INTEGRITY AND SECURITY OF NONPUBLIC INFORMATION AND IS IN COMPLIANCE WITH: (I) THE HEALTH INFORMA- TION TECHNOLOGY FOR ECONOMIC AND CLINICAL HEALTH ACT ("HITECH"), THE HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT ("HIPAA"), THE GRAMM-LEACH-BLILEY ACT; AND (II) ALL OTHER APPLICABLE CYBERSECURITY AND PRIVACY PROTECTIONS GOVERNING NURSING HOMES, ADULT CARE FACILITIES AND ASSISTED LIVING RESIDENCES TO THE EXTENT THE PROTECTIONS GOVERN THOSE COMPONENTS OF SUCH ORGANIZATION'S OPERATIONS. THE CYBERSECURITY POLICY SHALL BE SELF-CERTIFIED BY SUCH ORGANIZATION AND SUCH SELF-CERTIFIED CYBERSECURITY POLICY SHALL BE FILED WITH THE SUPERINTENDENT. THE SELF- CERTIFICATION SHALL ATTEST THAT THE POLICY PROVIDES SUFFICIENT PROTECTIONS OF NONPUBLIC INFORMATION IN A MANNER WHICH IS NOT INCONSIST- ENT WITH THE GOALS OF THE CYBERSECURITY POLICIES ADOPTED BY FINANCIAL SERVICES COMPANIES PURSUANT TO REGULATIONS PROMULGATED BY THE SUPER- INTENDENT. SUCH SELF-CERTIFICATION SHALL BE DEEMED COMPLIANT WITH SUCH REGULATIONS APPLICABLE TO FINANCIAL SERVICES COMPANIES. THE SUPERINTEN- DENT SHALL REVIEW THE ACCURACY AND REASONABLENESS OF THE ATTESTATION. UNLESS THE SUPERINTENDENT OBJECTS TO THE ATTESTATION WITHIN SIXTY DAYS FROM THE DATE IT IS SUBMITTED, SUCH ATTESTATION SHALL BE DEEMED APPROVED. § 2. This act shall take effect immediately. EXPLANATION--Matter in ITALICS (underscored) is new; matter in brackets [ ] is old law to be omitted. LBD05987-01-9
Comments
Open Legislation is a forum for New York State legislation. All comments are subject to review and community moderation is encouraged.
Comments deemed off-topic, commercial, campaign-related, self-promotional; or that contain profanity, hate or toxic speech; or that link to sites outside of the nysenate.gov domain are not permitted, and will not be published. Attempts to intimidate and silence contributors or deliberately deceive the public, including excessive or extraneous posting/posts, or coordinated activity, are prohibited and may result in the temporary or permanent banning of the user. Comment moderation is generally performed Monday through Friday. By contributing or voting you agree to the Terms of Participation and verify you are over 13.
Create an account. An account allows you to sign petitions with a single click, officially support or oppose key legislation, and follow issues, committees, and bills that matter to you. When you create an account, you agree to this platform's terms of participation.