NY State S.H.I.E.L.D. Compliance with Streamdal

We're updating our documentation, so the presented info might not be the most recent.
Beta

The data compliance features of Streamdal are currently in beta, and being tested with a select group of contributors, companies, and design partners. If you would like to participate in the beta, please reach out to us.

The New York “Stop Hacks and Improve Electronic Data Security Act” (SHIELD Act) aims to enhance the protection of New Yorkers’ private information by requiring businesses to implement reasonable security safeguards and broadening the notification requirements to consumers in the event of a data breach.

Streamdal will strengthen technical safeguards for data in motion, along with helping assess and mitigate risks with data processing and transmission.

Streamdal’s Approach

You can leverage Streamdal for:

Enforcing data handling policies: You can establish rules and pipelines that data must adhere to from the Console UI. For example, you could obfuscate social security numbers, names, addresses, or other PII data before it enters sensitive data stores, and block or limit PII from entering critical environments.

Assessing and mitigating risks for real-time data: Within the Console UI, the Data Graph provides a view of the flow of data throughout your systems. From there, you can tap into real-time data with Tail to better understand data flow or anomalies, and ensure data handling policies are compliant.

Coming Soon: A visual guide on setting up N.Y. SHIELD-specific rules in the Console UI.

Regulatory Insights

We wanted to make researching the relevant data regulations easier and give a better idea of where Streamdal could be the most impactful for your organization. In most cases, the combination of the observability and data governance capabilities will ensure successful compliance.

While more sections could be applicable, below is one taken from the NY State SHIELD Act1 along with how Streamdal can help with data compliance:

§ SectionsHow Streamdal helps comply
899-bb. Data security protections (2) Reasonable security requirementThe Streamdal SDK will enforce rules and pipelines you define in the Console UI for all your real-time data, and ensure your data handling policies are enforced every time data moves.

The Data Graph will provide a visual flow of data through your systems, and Tail allows you to tap into real-time data to explore data and any anomalous activities.
Information

Did you know:

The NY SHIELD Act defines “compliant regulated entities,” along with small businesses, as any person or business that is subject to the GLBA, HIPAA, HITECH, or “any other data security rules and regulations of, and the statutes administered by any official department, division, commission, or agency of the federal or New York state government1.”

Footnotes

  1. New York State Senate. (2019). Stop Hacks and Improve Electronic Data Security Act (S.H.I.E.L.D. Act), S5575B [§ 899-bb. Data security protections (2) Reasonable security requirement]. https://legislation.nysenate.gov/pdf/bills/2019/s5575b ↩ ↩2