23 CRR-NY 500.7NY-CRR
23 CRR-NY 500.7
23 CRR-NY 500.7
500.7 Access privileges.
As part of its cybersecurity program, based on the covered entity’s risk assessment each covered entity shall limit user access privileges to information systems that provide access to nonpublic information and shall periodically review such access privileges.
23 CRR-NY 500.7
Current through June 15, 2021
End of Document |