The New York Right to Know Act, S224 and A3739, would apply to businesses defined as any person, proprietorship, firm, partnership, association, cooperative, nonprofit organization or corporation organized or existing under the laws of New York state or any other state, and doing business in New York state. The legislation provides no exemptions. If approved, the New York Right to Know Act would go into effect immediately.
The New York Privacy Act, S5642 and A8526, would apply to legal entities that conduct business in New York state or produce products or services that are intentionally targeted to residents of New York state. Personal data subject to HIPAA and certain other laws are exempted, but data subject to FERPA are not currently included in those exemptions. If approved, the New York Privacy Act would go into effect 180 days after enactment.