Re: Details of New York Data Breach Bill?

[Dick Jacobson <Dick.Jacobson () NDSU NODAK EDU>]

On Sat, 12 Nov 2005, Ken Connelly wrote:

This article states "As long as a company conducts business in New York
and owns or licenses computerized data that include private information
about a New York resident, it has a legal obligation to notify ...".

I am interpreting this to NOT mean an institution outside of New York that
has students that have retained their New York residency.

Any legal minds wish to comment ?



> This article seems to be fairly complete and yet not overly long.
> http://www.jonesday.com/pubs/pubs_detail.aspx?pubid=455622903
>
> CHARLES MORROW-JONES wrote:
>
> > According to an Infoworld story datelined last Friday* there is a New York data breach notification statute 
> > scheduled to go into effect next month that appears to be fairly stringent.
> >
> > Could someone who is familiar with the statute inform the list about its provisions, particularly as they might 
> > pertain to students who attend universities in other states but who maintain their NY residency?
> >
> > Thanks,
> > Charles R. Morrow-Jones
> > Director, Security
> > Office of the CIO
> > The Ohio State University
> > morrow-jones.2 () osu edu -or- 614.292.1302
> >
> > *http://www.infoworld.com/article/05/11/11/HNdatabreachbill_1.htm


----------------------------------------------------------------------- 
Dick Jacobson                   e-mail : Dick.Jacobson () ndus NoDak edu
ND HECN MultiUser Host SysAd    office : IACC 206, NDSU
NDUS IT Security Officer        phone  : 701-231-7385
-----------------------------------------------------------------------