Maria Vullo, superintendent of the Department of Financial Services. Courtesy photo.Credit Agencies Operating in NY Must Register With Financial Services Dept. by Sept. 15
A new rule takes effect on Sept. 15 requiring credit-reporting agencies operating in New York state to register. The regulations were passed in reaction to the massive Equifax consumer data breach that occurred a year ago this month.
September 06, 2018 at 04:11 PM
4 minute read
Credit-reporting agencies operating in New York must register with the state Department of Financial Services by Sept. 15 under a final regulation passed in June to protect state residents' private data from breaches such as the massive Equifax data breach that exposed information on millions of Americans last year.
DFS launched an online registration form last month for credit-reporting agencies to comply with the new rules issued after public hearings last year, Superintendent Maria Vullo announced recently. The regulations were passed in June in response to the Equifax data breach disclosed a year ago Friday, which exposed the Social Security numbers and other private information of nearly 148 million Americans, including more than 8 million New Yorkers, according to updated figures.
“In the face of lax federal government oversight, New York has led the nation in protecting consumers and safeguarding the financial services industry from the threat of data breaches and other cyber-attacks,” Superintendent Vullo said in a statement. “This online registration process is an important step as DFS continues to take steps to promote strong, modern state regulation and to ensure that the sensitive data of consumers remains safe.”
The new rule requires consumer credit agencies with reports on 1,000 New Yorkers or more in the past year to register annually with the department beginning on or before Sept. 15, and by Feb. 1 of each year thereafter. The form requires the agencies to identify the officers and directors who are responsible for complying with state laws regulating financial services, banking and insurance. It also requires the agencies to comply with the state's sweeping cybersecurity regulation by Nov. 1, including having a cybersecurity program, a written policy approved by the board or a senior officer to protect consumers' data and a chief information security officer.
Aside from the public hearings held in New York last year, congressional hearings also were held in Washington, D.C., last October, during which Senate Judiciary Committee Chairman Chuck Grassley, R-Iowa, called for federal standards. But no legislation actually passed, and the Consumer Financial Protection Bureau pulled the plug on a full-scale investigation of the Equifax incident earlier this year.
Chi Chi Wu, staff attorney for the National Consumer Law Center, said in a news release Thursday, “despite all the outrage and media attention last year, Congress has done little except make security freezes free, and Equifax has not been held accountable.”
The Federal Trade Commission is still probing the breach and Equifax could still face financial penalties, according to news reports. Andrew Smith, the FTC's new director, is a former partner at Covington & Burling who testified before Congress at the Equifax data breach hearings in October 2017 on behalf of the Consumer Data Industry Association, which represents the credit-reporting agencies, according to Reuters.
Equifax's latest filing with the U.S. Securities and Exchange Commission states that company is being investigated by attorneys general in 48 states and the District of Columbia, and faces lawsuits brought by the attorneys general of Massachusetts, Puerto Rico and West Virginia, according to the U.S. Public Interest Research Group Education Fund in a report released Thursday.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View All
Trump's SEC Likely to Halt 'Off-Channel' Texting Probe That's Led to Billions in Fines
Get Your Popcorn Ready: Sanctions Regulations Involving Artwork and Media Content in a Post-'Chevron' World
11 minute read
Trending Stories
- 1Bankruptcy Judge to Step Down in 2025
- 2Justices Seek Solicitor General's Views on Music Industry's Copyright Case Against ISP
- 3Judge to hear arguments on whether Google's advertising tech constitutes a monopoly
- 4'Big Law Had Become Too Woke': Why Bill Barr Moved On
- 5Manhattan U.S. Attorney Damian Williams Announces Resignation from Office
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
