kelvinis.online

Anyone can email as your business.

A scammer. A competitor. Anyone. New York law makes that your problem to fix. Check your domain below in ten seconds, no signup, nothing touched.

pssssst

that email check is just the first loose thread 🧵

If you run a business in New York 🗽, the law already expects more from you than one email fix.

See what it expects →

2 people or 200. Small doesn't mean exempt.

Being a small business doesn't get you out of the SHIELD Act. It just means your safeguards are scaled to your size, not that you can skip them. Everything you need to know fits on a form and a receipt.

COVERAGE CHECK FORM SB-1

Does your business keep anyone's name next to anything sensitive?

(your own payroll counts)
NOTES FOR FORM SB-1:

"Sensitive" includes Social Security numbers, card and account numbers, health information, and an email with its password. Businesses answering yes are expected under GBL §899-bb to keep reasonable safeguards: a person responsible for security, a risk assessment, trained staff, vetted vendors, and a written record that all of it exists.

STATE OF NEW YORK
ENFORCEMENT RECEIPT · GBL §899-BB
DATE --/--/---- · CASHIER: ATTORNEY GENERAL
No reasonable safeguards, per violation $5,000
Cap on the total none
Notification penalties, capped at $250,000
Deadline to notify the state 30 days
Insurance claim, no documentation DENIED
TOTAL avoidable

This receipt is hypothetical. Keeping it that way is the entire job. Amended December 2024 · your insurer reads the same statute.

What I find in almost every small business, the first time anyone looks.

No data inventory Customer files, payroll records, an old laptop in a drawer. You can't protect what nobody has mapped, and after a breach, you can't even tell the state what was taken.
No MFA on key accounts QuickBooks, email, and payroll behind a single password. One convincing fake login page and someone is reading your mail, then writing it: to your clients, with your invoices attached.
No encryption on files Sensitive files sitting readable on devices and in inboxes. Lose one laptop and it stops being an inconvenience and becomes a reportable breach with a deadline attached.
No incident response plan A breach starts the state's 30 day notification clock whether you're ready or not. Businesses without a plan spend the first week deciding who to call while the deadline runs.
No staff security training Nearly every small-business breach starts with a person, not a machine. Untrained staff aren't careless, they're unarmed, and attackers know which offices never practice.

None of this takes a year to close. But closing it properly, in the order that matters, documented the way the state and your insurer expect: that's the actual work, and it's what you'd be hiring.

My program closes every gap the law expects, and hands you the paperwork to prove it.

Flat prices, published up front.

The number on this page is the number on the invoice. No retainers, and nothing renews without a conversation.

Security Checkup
$495flat · teams of 15 or fewer

The fast first pass: email security, passwords, backups, devices, Wi-Fi, cloud accounts, and what needs attention next. Under two hours of your time.

  • A report you'll actually read
  • Every finding ranked by risk
  • Walkthrough call included
Start with a checkup
Most Chosen
NYC Shield
$1,500flat · teams of 15 or fewer

Find it, fix it, put it in writing: everything in the Checkup, plus the security program the law expects and a staff training session. Gaps closed in four to eight weeks.

  • Written security program
  • Staff security training
  • Documentation for your insurer
Start NYC Shield
Fix & Support
$60per hour · only when you need it

Help when something comes up: fixing what a checkup flags, setting up new computers and accounts, or sorting out an everyday IT headache. No retainer, no monthly bill.

  • Pay only for the time you use
  • Hours estimated up front
  • No ongoing commitment
Ask about support

Pricing covers teams of 15 or fewer; larger teams get a quote up front, never a surprise. NYC Shield is my own service, built around the NY SHIELD Act, not a government program.

Find out where you stand.
It costs nothing to know.

Five questions, one at a time, no technical knowledge needed. You get a score and your exact gaps.

READINESS CHECK FORM SB-0 · QUESTION 1 OF 5