• |

Sep. 17, 2025

Practical Compliance Implications From NYDFS’ Healthplex Settlement

  • Mark Coakley
    Cybersecurity Law Report
The New York Department of Financial Services (NYDFS) recent $2‑million settlement with Healthplex following an investigation conducted in the wake of a 2021 data breach highlights the financial, operational and reputation risks for all covered entities that fail to meet the stringent requirements of the NYDFS Cybersecurity Regulation. This article examines key aspects of the consent order and its compliance implications, with insights from enforcement specialists, including those who previously served in NYDFS roles, at BakerHostetler, Clifford Chance, Mayer Brown and Norton Rose Fulbright. See our two-part series “Amendment to NYDFS Cyber Regulation Brings New Mandates”: Governance Provisions (Dec. 13, 2023), and First Compliance Steps (Jan. 3, 2024).

To read the full article

Continue reading your article with a CSLR subscription.

Most-Read Articles

Women to Watch: Contributions, Achievements and Observations of Outstanding Female Professionals

To mark International Women’s Day, women editors and reporters at ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Law Report Group editors Jill Abitbol, Robin L. Barton and Megan Zwiebel profile notable women in data privacy, cybersecurity, private funds and anti-corruption law, including Anne-Gabrielle Haie, Jessica Lee, Micaela McMurrough, Laura Perkins, Amanda Raad, Madelyn Calabrese, Ranah Esmaili and Genna Garver. Enjoy reading their inspiring remarks here.

Celebrating Data Privacy Day 2025

Read the full brief here.

Cybersecurity Awareness Month

Read the full brief here.