New York data security act
New York A 4254 of 2005 provides that in the event of unauthorized access to “private information,” defined as personal information in combination with a social security number, driver’s license, or an account or credit card number, the business or state entity is required to notify affected customers and inform appropriate authorities. The policy detects combinations of Personally Identifiable Information (PII) like social security, credit card, and driver’s license numbers. The rules for this policy are:
- New York Data Security Act: SSN: with NY driver license
- New York Data Security Act: SSN with CCN
- New York Data Security Act: Name with SSN
- New York Data Security Act: Name with New-York driver license
- New York Data Security Act: Name with CCN
- New York Data Security Act: SSN with DNA profile