The Sm@rtEdgeLaw Group

- "Smart companies need a Sm@rtEdge" TM

SmartEdgeLaw Quoted on NYDFS Final Cybersecurity Regulations

Attorney Richard Santalesa was quoted on the time and deadlines coming for entities affected by newly enacted New York State Dept of Financial Services CyberSecurity Regs, which went into effect on March 1, 2017 following two rounds of drafts and public comment. The article in SecurityIntelligence, New York State Codifies Financial Cybersecurity Regulations, available here, […]

Sm@rtEdgeLaw NYDFS CyberRegs Summary Highlighted and Republished

SmartEdgeLaw Attorney, Richard Santalesa’s recent summary of NYDFS’ newly issued Cybersecurity Regulations, was recently reposted by boutique cybersecurity consulting firm, Delta Risk LLC, for its clients at New York’s Proposed Cyber Security Rules Could Have Far-Reaching Effects on Banks, Insurers, and Other Financial Firms, at

New Cloud Computing Guidance From Health & Human Services’ OCR

The digital world has migrated to the Cloud, on both personal and business levels.  But for “covered entities” and “business associates” subject to the Health Insurance Portability and Accountability Act regime, better known by the moniker of “HIPAA”, many CE and BA’s must often determine how (and whether) they can take advantage of cloud computing while […]

Proposed cybersec regulations for New York financial institutions have a broad reach

As written by SmartEdgeLaw Group Attorney Richard Santalesa, in the September 30, 2016 IAPP Privacy Tracker and Daily Dashboard – at Proposed cybersec regulations for New York financial institutions have a broad reach Richard Santalesa, CIPP/US Privacy Tracker | Sep 30, 2016 New York state’s long-awaited Cybersecurity Regulations For Financial Services Companies, issued by […]

Cybersecurity Regulations Issued by NYS Dept of Financial Services

New York State’s long-awaited Cybersecurity Regulations for financial institutions were released last week by the New York State Department of Financial Services (“NYDFS”) for a 45-day public notice and comment period, starting Sept 28, 2016, after which the Regs will go into effect on January 1, 2017, unless modified, as codified at 23 NYCRR Part […]

1+ Billion Records Exposed So Far in 2016

With Labor Day over and summer now fading into memory, it’s the perfect time to take a fresh look at your data and information security, privacy and compliance postures. And to review fresh lessons from what 2016 has served up as to data breaches and incidents in the first six months. Background Earlier this year, […]

Is this the Definitive Cybersecurity Guide? NYSE Guide for Directors & Officers

The following post by SmartEdgeLaw Group attorney, Richard Santalesa, was originally published  Oct. 27, 2015 at the International Association of Privacy Professionals’ Privacy Perspectives website. Is this the Definitive Cybersecurity Guide? While many companies come up short on their cybersecurity programs or ability to safeguard data privacy, one area where no gap exists is in the […]

SmartEdge Presenting at IAPP KnowledgeNet on new CT data breach statute

The SmartEdgeLaw Group is happy to announce its participation in the upcoming Sept 29, 2015 IAPP KnowledgeNet to be held at the Hartford Convention Center in conjunction with the 2015 Information Governance Conference.  Attendance at the KnowledgeNet is free of charge, but registration is required.  IAPP members can received a 15% discount for the full InfoGovCon15 […]

SmartEdgeLaw Quoted on 3D Printing Legal Issues

SmartEdgeLaw Group Attorney was recently quoted on the legal issues and concerns for IP owners posed by the rise of 3D Printers in an article by noted technology journalist Pam Baker in InformationWeek’s article, 3D Printers: IT’s Next Great Data Challenge, available at In the article Santalesa noted the difficulties that will arise regarding […]

SmartEdgeLaw View on FISMA 2.0 Quoted in FedTech Magazine

While data breaches at retailers and merchants get the headlines, governmental breaches – particularly on the federal level – are an all too common occurrence.  According to federal watchdogs, there were 25,556 breaches of personally identifiable information in 2013, up from 10,481 in 2009. In response, SmartEdgeLaw’s opinion on the need and requirements of the […]

FTC Announces Workshop on Cross Device Tracking

Building on the FTC’s continued push into mobile issues and privacy, which it reinforced at the 2015 IAPP Global Summit in D.C. two weeks ago, the Federal Trade Commission today announced an upcoming workshop to explore the issues raised by cross device tracking – using browsers or apps to visit sites across different devices. As the FTC […]

© 2014 Sm@rtEdge LLC. All Rights Reserved. Attorney advertising. Prior results do not guarantee a similar outcome. Site Map Privacy Policy Frontier Theme