City Council:
AN ORDINANCE ADOPTING A COMPUTER SYSTEM
SECURITY BREACH NOTIFICATION POLICY IN
COMPLIANCE WITH NEW YORK STATE
TECHNOLOGY LAW SECTION 208
Whereas, by correspondence dated October 3, 2025, the Commissioner of the Department of Management Services requested that the City Council authorize the formal adoption of a policy establishing procedures to be followed by all City departments, agencies, and employees in the event of a computer system security breach, pursuant to the requirements of Section 208 of the New York State Technology Law; and
Whereas, the City of Mount Vernon recognizes the importance of protecting the personal and confidential information of its residents, employees, and all persons whose data may be collected or maintained by the City; and
Whereas, Section 208 of the New York State Technology Law mandates that municipalities adopt and implement a computer system security breach notification policy to ensure timely and appropriate notification to affected individuals in the event that personal information is compromised; and
Whereas, the City of Mount Vernon seeks to establish clear procedures to define and respond to data security breaches, ensure compliance with State law, and safeguard the integrity of municipal operations; and
Whereas, adopting this policy will ensure that all City departments follow uniform standards and procedures in the event of a security breach, coordinate properly with law enforcement and state agencies, and provide prompt and transparent notification to affected residents; and
Whereas, the City Council finds it in the best interest of the City and its residents to adopt a formal Computer System Security Breach Notification Policy in order to comply with applicable law, protect the public from potential identity theft, and reinforce the City's commitment to data security and accountability; Now, Therefore, Be It Resolved That
The City of Mount Vernon, in Ci...
Click here for full text