NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies
Data Protection Report
NOVEMBER 8, 2023
On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. This notice requirement explicitly applies to cybersecurity incidents occurring to the covered entity itself, its affiliates, or a third-party service provider.