Are you ready? March 1, 2010, is the effective date for regulation 201 CMR 17.00: Standards for the Protection of Personal Information of Residents of the Commonwealth. This regulation implements provisions of Massachusetts General Law Chapter 93H for standards to be met by anyone who owns, licenses, stores, or maintains personal information of a resident of the Commonwealth of Massachusetts.
Part of Nixon Peabody’s Information Law Webinar Series.
Are you ready? March 1, 2010, is the effective date for regulation 201 CMR 17.00: Standards for the Protection of Personal Information of Residents of the Commonwealth. This regulation implements provisions of Massachusetts General Law Chapter 93H for standards to be met by anyone who owns, licenses, stores, or maintains personal information of a resident of the Commonwealth of Massachusetts.
Part of Nixon Peabody’s Information Law Webinar Series.
On Thursday, January 21, Nixon Peabody offered a webinar addressing the issues associated with the Massachusetts privacy regulations and what these new regulations mean to your company.
The new regulations go beyond other state and federal regulations related to protecting personal information, and discuss implementation of the following types of controls to ensure compliance:
- Written information security program
- Policies and procedures to prevent terminated employees from gaining access
- Physical access control policies and procedures
- Security incident response policies
- Monitoring for unauthorized access
- Encryption of personal information on laptops and other portable devices
- Encryption of personal information data in transmission
- Secure methods of assigning passwords and control of user IDs and other identifiers
- Training employees on importance of personal information security
- Up-to-date firewall protection and operating system security patches
Speakers
The Nixon Peabody webinar includes an overview of the regulation, the penalties associated with non-compliance, and how to identify your company’s exposure from a information technology perspective.
Click here to view an online recording of this webinar.
The foregoing has been prepared for the general information of clients and friends of the firm. It is not meant to provide legal advice with respect to any specific matter and should not be acted upon without professional counsel. If you have any questions or require any further information regarding these or other related matters, please contact your regular Nixon Peabody LLP representative. This material may be considered advertising under certain rules of professional conduct.