What You Need To Do To Be SHIELD Compliant
                     What You Need To Do To Be SHIELD Compliant
• Came into effect on March 21,2020, the Shield Act is a data privacy regulation that is 
applicable to any individual or companies which owns or licenses computerized data 
which encompasses private info of an inhabitant of New York. The act was designed to 
extend the existing NYDFS by enforcing more strict data security and breach notification 
requirements.
Find and categorize your private info:
• Having sensitive private information scattered over more than one location makes it 
really tough to monitor who has access to it. And if you have no idea who has access to 
your sensitive data, SHIELD compliance will not be a rational goal. Therefore, from a 
technical point of view, the 1st step towards SHIELD compliance would be to find out and 
categorize your sensitive information.
Impose “least privilege” access:
• Private information access has to be limited in conformity with the “principle of least 
privilege”, which specifies that users are only permitted access to the data they require to 
conduct their obligations. Therefore, you’ll require guidelines in place which regulate how 
and when private information access should be permitted and cancel.
Monitor access to sensitive data:
• You need to notify the pertinent authorities whensoever sensitive data has been acquired 
by an unsanctioned party. Certainly, in an effort to make such a declaration, you need to 
have discernibility into who has access to what info, when, how, where, and for how long.
• Compciti Business Solutions Inc.
•
261 West 35th Street, Suite 603
•
New York, NY 10001
•
Phone: (212) 594-4374
•
Fax: (212) 594-6714
• https://compciti.com/contact/ 
Note: This content is created and provided by a third-party online content writer on behalf of Compciti, and 
is for commercial purposes only. Compciti does not take any responsibility on the accuracy of this content.