A person may not be required to disclose or furnish his or her Social Security Number (SSN) for any purpose under new section 399-ddd of New York’s General Business Law, effective December 12, 2012. The new law safeguarding SSNs applies to employers and certain other entities in the state. Businesses must review their practices relating to employees, customers and other individuals in situations where all or a part of the SSN is involved.
- The individual consents to the acquisition or use of his or her SSN (this likely means a voluntary consent);
- The SSN is expressly required by federal, state or local law or regulation;
- The SSN is used for internal verification or fraud investigation;
- The SSN is requested for credit or credit card transaction initiated by the consumer or in connection with a lawful request for a consumer report or investigating consumer report (in addition to permissible background checks under the Fair Credit Reporting Act and New York law, this provision also may cover corporate credit card programs, frequently used by companies to better manage business expense reimbursement);
- The SSN is requested for purposes of employment, including in the course of administration of a claim, benefits, or procedure related to employment, such as termination from employment, retirement, workplace injury, or unemployment claims;
- The SSN is requested for tax compliance, collecting child or spousal support, or determining whether a person has a criminal record; and
- The SSN is requested by an authorized insurance company for purposes of furnishing information to the Centers for Medicare and Medicaid Services (this likely captures the reporting requirements under Section 111 of the Medicare, Medicaid and SCHIP Extension Act of 2007).
Jackson Lewis. 12.7.2012. http://www.jacksonlewis.com/resources.php?NewsID=4294