New York City Council Header
File #: Int 1152-2018    Version: * Name: Requiring an online payment grace period in the event of an electronic system security breach.
Type: Introduction Status: Laid Over in Committee
Committee: Committee on Technology
On agenda: 10/17/2018
Enactment date: Law number:
Title: A Local Law to amend the administrative code of the city of New York, in relation to requiring an online payment grace period in the event of an electronic system security breach
Sponsors: Peter A. Koo, Kalman Yeger , Robert F. Holden
Council Member Sponsors: 3
Summary: In the event that an electronic system security breach disables a city website used by residents to make online payments to the city, this bill would ensure that residents are able to make payments following the restoration of the website without incurring late fees. Specifically, this bill would require the Chief Information Security Officer to work in collaboration with an affected agency and the Department of Information Technology and Telecommunications to establish a 48-hour grace period for the receipt of online payments under these circumstances.
Attachments: 1. Summary of Int. No. 1152, 2. Int. No. 1152, 3. October 17, 2018 - Stated Meeting Agenda with Links to Files, 4. Committee Report 12/13/18, 5. Hearing Testimony 12/13/18, 6. Hearing Transcript 12/13/18

Int. No. 1152

 

By Council Members Koo, Yeger and Holden

 

A Local Law to amend the administrative code of the city of New York, in relation to requiring an online payment grace period in the event of an electronic system security breach

 

Be it enacted by the Council as follows:

 

Section 1. Chapter 8 of title 23 of the administrative code of the city of New York is amended by adding a new section 23-803 to read as follows:

§ 23-803 Online payment grace period. a. For the purposes of this section, the following terms have the following meanings:

Chief Information Security Officer. The term “chief information security officer” means the head of New York city cyber command as established by executive order number 28 for the year 2017 or any other officer or administering agency designated by the mayor to perform the same functions.

Electronic system. The term “electronic system” means any website, network, online infrastructure or internally or externally accessible electronic systems constructed or maintained by or on behalf of the city.

b. In the event that a security breach disables, for 24 hours or more, an electronic system used by residents to make payments to a city agency, the chief information security officer shall, in collaboration with affected agencies and the department of information technology and telecommunications, establish a 48-hour grace period after such electronic system is restored during which no late payment fees will be incurred for any payment due in the time period during which the security breach disabled such system.

§ 2. This local law takes effect 120 days after it becomes law, except that the office of the mayor, the department of information technology and telecommunications and any other agency may take such measures prior to such date as are necessary for implementation of this local law, including the promulgation of rules.

 

 

 

 

 

 

 

APB

LS 6361

5/29/18, 11:00 am