assembly Bill A2374

Signed By Governor
2019-2020 Legislative Session

Relates to requiring a consumer credit reporting agency to offer identity theft prevention and mitigation services in the case of a breach of the security of such agency's system

download bill text pdf

Sponsored By

Current Bill Status - Signed by Governor


  • Introduced
  • In Committee
  • On Floor Calendar
    • Passed Senate
    • Passed Assembly
  • Delivered to Governor
  • Signed by Governor

Your Voice

do you support this bill?

Please enter your contact information

Home address is used to determine the senate district in which you reside. Your support or opposition to this bill is then shared immediately with the senator who represents you.

Optional services from the NY State Senate:

Create an account. An account allows you to officially support or oppose key legislation, sign petitions with a single click, and follow issues, committees, and bills that matter to you. When you create an account, you agree to this platform's terms of participation.

Include a custom message for your Senator? (Optional)

Enter a message to your senator. Many New Yorkers use this to share the reasoning behind their support or opposition to the bill. Others might share a personal anecdote about how the bill would affect them or people they care about.

Actions

view actions (13)
Assembly Actions - Lowercase
Senate Actions - UPPERCASE
Jul 25, 2019 signed chap.115
Jul 22, 2019 delivered to governor
Jun 19, 2019 returned to assembly
passed senate
3rd reading cal.870
substituted for s3582
Feb 27, 2019 referred to consumer protection
delivered to senate
passed assembly
Feb 21, 2019 advanced to third reading cal.60
Feb 11, 2019 reported
Feb 05, 2019 reported referred to codes
Jan 22, 2019 referred to consumer affairs and protection

Co-Sponsors

view additional co-sponsors

A2374 (ACTIVE) - Details

See Senate Version of this Bill:
S3582
Law Section:
General Business Law
Laws Affected:
Amd §380-t, Gen Bus L
Versions Introduced in 2017-2018 Legislative Session:
A8695, S6923

A2374 (ACTIVE) - Summary

Relates to requiring a consumer credit reporting agency to offer identity theft prevention and mitigation services in the case of a breach of the security of such agency's system.

A2374 (ACTIVE) - Bill Text download pdf


                    S T A T E   O F   N E W   Y O R K
________________________________________________________________________

                                  2374

                       2019-2020 Regular Sessions

                          I N  A S S E M B L Y

                            January 22, 2019
                               ___________

Introduced  by M. of A. DINOWITZ, BUCHWALD, GOTTFRIED, SIMON, SEAWRIGHT,
  SIMOTAS, BARRON, THIELE, FAHY, WRIGHT, GUNTHER, SOLAGES, ORTIZ, BRAUN-
  STEIN, WILLIAMS, OTIS, L. ROSENTHAL, SANTABARBARA, GALEF -- read  once
  and referred to the Committee on Consumer Affairs and Protection

AN  ACT  to  amend  the general business law, in relation to requiring a
  consumer credit reporting agency to offer  identity  theft  prevention
  and  mitigation  services  in  the case of a breach of the security of
  such agency's system

  THE PEOPLE OF THE STATE OF NEW YORK, REPRESENTED IN SENATE AND  ASSEM-
BLY, DO ENACT AS FOLLOWS:

  Section  1.  Subdivision  (n) of section 380-t of the general business
law is amended by adding a new paragraph 3 to read as follows:
  (3)(I) UPON A BREACH OF THE SECURITY OF THE SYSTEM OF A CONSUMER CRED-
IT REPORTING AGENCY WHICH INCLUDES  ANY  SOCIAL  SECURITY  NUMBER,  SUCH
AGENCY SHALL OFFER TO EACH CONSUMER, WHOSE INFORMATION, INCLUDING SOCIAL
SECURITY  NUMBER,  WAS  BREACHED  OR IS REASONABLY BELIEVED TO HAVE BEEN
BREACHED, REASONABLE IDENTITY THEFT PREVENTION SERVICES AND, IF APPLICA-
BLE, IDENTIFY THEFT MITIGATION SERVICES FOR A PERIOD NOT TO EXCEED  FIVE
YEARS AT NO COST TO SUCH CONSUMERS. SUCH AGENCY SHALL PROVIDE ALL INFOR-
MATION NECESSARY FOR SUCH CONSUMERS TO ENROLL IN SUCH SERVICES AND SHALL
INCLUDE INFORMATION ON HOW SUCH CONSUMERS CAN REQUEST A SECURITY FREEZE.
A  CONSUMER  CREDIT REPORTING AGENCY SHALL NOT BE REQUIRED TO OFFER SUCH
SERVICES IF, AFTER AN APPROPRIATE INVESTIGATION, THE  AGENCY  REASONABLY
DETERMINES  THAT THE BREACH OF SECURITY IS UNLIKELY TO RESULT IN HARM TO
THE CONSUMERS WHOSE INFORMATION HAS BEEN BREACHED.
  (II) "BREACH OF THE SECURITY OF THE SYSTEM" AS USED IN THIS  PARAGRAPH
SHALL HAVE THE SAME DEFINITION AS IN PARAGRAPH (C) OF SUBDIVISION ONE OF
SECTION EIGHT HUNDRED NINETY-NINE-AA OF THIS CHAPTER.
  §  2.    This act shall take effect on the sixtieth day after it shall
have become a law and shall apply to any breach of the security  of  the
system  of a consumer credit reporting agency that occurred no more than
three years prior to the effective date of this act.

 EXPLANATION--Matter in ITALICS (underscored) is new; matter in brackets

Comments

Open Legislation comments facilitate discussion of New York State legislation. All comments are subject to moderation. Comments deemed off-topic, commercial, campaign-related, self-promotional; or that contain profanity or hate speech; or that link to sites outside of the nysenate.gov domain are not permitted, and will not be published. Comment moderation is generally performed Monday through Friday.

By contributing or voting you agree to the Terms of Participation and verify you are over 13.