10 events advancing 10 policy or regulatory changes:
Graph
Table
Nevada Gaming Commission Cybersecurity regulations
Implemented Nevada Gaming Commission Regulations to create cybersecurity requirements for certain gaming operators
On 1 January 2023, the Nevada Gaming Commission (NGC) Regulations to create cybersecurity requirements for certain gaming operators entered into force. Gaming operators are required to take all appropriate steps to protect their systems from cyber a…
Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions
Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions implemented
On 1 January 2023, the Central Bank of Nigeria's Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions, applicable to all entities defined as Other Financial Institutions (OFIs), have been implemented. The Guidelines set…
New York City: Tenant Data Privacy Bill
NYC: Tenant Data Privacy Bill fully implemented
On 1 January 2023, Bill Int 1760-2019, on tenant data privacy, is fully implemented as the private right of action against smart access system owners who unlawfully sell tenant data has become enforceable.
Cybersecurity regulation in Administrative measures for data security in the field of industry and information technology
Implemented Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation) including cybersecurity measures
On 1 January 2023, the Regulation "Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation)" came into effect. The measures aim to regulate data processing activities and outline security…
Data transfer regulation in Administrative measures for data security in the field of industry and information technology
Implemented Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation) including data transfer regulation
On 1 January 2023, the “Administrative Measures on Data Security in the Industry and Information Technology Sectors (for Trial Implementation)” came into effect. The Regulation outlines obligations for the industrial and telecom sectors depending on…
Virginia: Amendment to the Consumer Data Protection Act
Implemented Amendment to the Consumer Data Protection Act
On 1 January 2023, the Amendment to the Consumer Data Protection Act enters into force after being signed into law by Virginia Governor, Ralph Northam on 2 March 2022. The Act amends the provisions regarding the right to data deletion to enable indi…
System security requirements in Virginia Consumer Data Protection Act
Implemented Virginia Consumer Data Protection Act
On 1 January 2023, the Consumer Data Protection Act (VCDPA) becomes effective after its adoption on 2 March 2021. The bill establishes new requirements for personal data processing and security and applies to entities that produce or advertise their…
Kentucky: Insurance Data Security Act
Kentucky Insurance Data Security Act implemented (HB 474)
On 1 January 2023, the Insurance Data Security Act (HB 474) enters into force. The Act introduces a data security framework for insurance carriers that requires them to conduct self-evaluations of their risk profile and how to mitigate it. Based on …
Data protection regime in Virginia Consumer Data Protection Act
Implemented Virginia Consumer Data Protection Act
On 1 January 2023, the Consumer Data Protection Act (VCDPA) becomes effective after its adoption on 2 March 2021. The bill establishes new requirements for personal data processing and security and applies to entities that are based in the State; pr…
California law on mental health digital services and mental health application information
Implemented bill on mental health digital services and mental health application information
On 1 January 2023, Assembly Bill (AB) 2089 on mental health privacy was implemented. The Bill amends the California Confidentiality of Medical Information Act (CMIA) by revising the definition of medical information to include mental health applicat…