Posts in Privacy and Security Law.
Blogs
Clock 9 minute read
NYDFS Cybersecurity Crackdown: New Requirements Now in Force—Are You Compliant?
Categories: Corporate Compliance, Cybersecurity, Privacy and Security Law
,
Linkedin Twitter Facebook Email

As cybersecurity breaches grow more complex and frequent, regulators are increasingly focused on organizational compliance. Organizations such as Crowdstrike report that in 2025,  cyberattacks are increasing in speed, volume, and sophistication—and cybercrime has evolved as a “highly efficient business.” The escalating threat landscape demands robust security frameworks that can withstand evolving risks.

Enter the amendments announced in November 2023 to the New York’s Department of Financial Services (NYDFS) Cybersecurity Regulation, 23 NYCRR Part 500 (“Amended Regulation”), that became effective on November 1, 2025. This post explores the breadth of these Amended Regulations, and the steps that covered entities need to take now.

Blogs
Clock 2 minute read
Video: AI in the Workplace: California Sets a New Compliance Standard - Employment Law This Week
Categories: Artificial Intelligence, Employment Compliance, Privacy and Security Law
Linkedin Twitter Facebook Email

As featured in #WorkforceWednesday®: Starting October 1, 2025, new AI rules in California will change how businesses in the state use automated tools in hiring, promotions, and other workplace decisions.

Key Takeaways for Employers:

  • Anti-Discrimination Measures: The new regulations specifically target discriminatory practices in employers’ use of automated decision systems (ADS).
  • Recordkeeping Requirements: Employers are now mandated to retain all ADS records and data for a minimum of four years.
  • Regulatory Precedent: California’s proactive stance on AI regulation is anticipated to influence similar regulatory frameworks nationwide, establishing a precedent for other states.

In this episode of Employment Law This Week®, Epstein Becker Green attorney Frances M. Green provides an essential breakdown of the new California regulations, including actionable insights on conducting risk assessments and aligning them with existing cybersecurity and privacy audits to ensure compliance.

Search This Blog

Blog Editors

Recent Updates

Related Services

Topics

Archives

Jump to Page

Subscribe

Sign up to receive an email notification when new Workforce Bulletin posts are published:

Privacy Preference Center

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.

Performance Cookies

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.

trellis19