Law: Please note this State does not have a general privacy law in effect, you can visit USA State Law Tracker to monitor the progress of US State bills.
Regulator: The New York State Attorney General ('AG')
Summary: Although New York does not recognise a constitutional or common law right of privacy, privacy is regulated statutorily through the Civil Rights Law. Another important part on New York's legislation is the Stop Hacks and Improve Electronic Data Security Act ('the SHIELD Act'). It was signed into law in July 2019 before fully coming into effect on 21 March 2020, and regulates data breach and data security matters in New York. The SHIELD Act modified existing data breach requirements, established obligations regarding developing security programs, and expanded enforcement capabilities. New York’s State Senate and Assembly have also tried to pass general privacy legislation, but such bills have not yet been successful.