Category: Mass 201 CMR 17.00

Final Phase Of Massachusetts Data Protection Law To Kick In On March 1

Greetings From Massachusetts

All companies storing personal data on Massachusetts residents have just over a month to ensure that their contractors, suppliers, technology providers and other third parties comply with a provision of a state data breach law that went into effect in March 2010. The law is designed to ensure that companies holding data on Massachusetts residents have certain security controls in place . Over the past two years, most of the provisions of the bill have already gone into effect. The last…

Click for complete article >>

Regulations Can Only Do So Much to Protect Against Breaches

Posted September 21, 2011 by TeamSHATTER Admin in Best Practices, Breach Notification Laws, Data Breach, Database Security, Mass 201 CMR 17.00 with 0 comments
ma 201 data protection

A few years ago, Massachusetts passed a state law that requires companies doing business within the commonwealth to report any security breach that could result in identity theft to customers. The law is a good step forward, and if you read my blog regularly, you know that I think government needs to step it up when it comes to cyber security and user protection. However, the recent announcement from Massachusetts shows that while it is great to have a law…

Click for complete article >>

1 In 3 Massachusetts Residents Experienced Data Breach In 2011

Massachusetts Data Breach

Personal information from nearly one out of three Massachusetts residents, from names and addresses to medical histories, has been compromised through data theft or loss since the beginning of 2010, according to statistics released yesterday by the office of Attorney General Martha Coakley. A state law enacted in 2007 requires all companies doing business in Massachusetts to inform consumers and state regulators about security breaches that might result in identity theft. That could include leaks of individual names along with…

Click for complete article >>

Belmont Savings Bank Charged With Violating Massachusetts Data Privacy Law

Belmont Savings Bank Mass 201

It’s been almost 18 months since the Massachusetts Data Privacy Law went into effect. Belmont Savings Bank has become one of the first charged with violating the law. Belmont Savings Bank maintained personal information on an unencrypted backup data tape and then lost the tape. According to surveillance footage the tape was likely discarded inadvertently by the overnight clearing crew and sent to the incinerator. There were several rounds of changes between the first version of 201 CMR 17.00 and…

Click for complete article >>
Powered by