Massachusetts MA 201 CMR 17.00 – Best Practice Guidance on How to Comply

MA 201 CMR 17.00 has been in the news for the last 18 months. Whilst no one was sure when it would come into effect, it has now been confirmed that the Massachusetts information security regulations, entitled “Standards for the Protection of Personal Information of Residents of the Commonwealth,” also known as “MA 201.17”will take effect on March 1, 2010. The regulations apply to entities that own or license personal information about Massachusetts residents. It is important to note that rules apply to all entities, wherever located, with “personal information” of Massachusetts residents.

For most organizations this is yet another complex and hard to grasp piece of law to comply with. Why has Massachusetts decided to design and enact MA 201? What is meant by personal information? How are you supposed to safeguard it? What are the best practices to ensure compliance and what are the steps you need to take to achieve and maintain compliance with MA 201? What is the upside of MA 201 for your business if any?

Click Here to read the complete Whitepaper...