TSI Support TSI Support Login      
  
   Blog
  
  

Current Articles | RSS Feed RSS Feed

201 CMR 17.00 Mass. Privacy Law

Digg digg it | Reddit reddit | del.icio.us del.icio.us 

If you operate a business in Massachusetts, please read the following as it may affect you.

In keeping with the Patrick Administration's commitment to protecting consumers, the Office of Consumer Affairs and Business Regulation (OCABR) issued in October 2008 a comprehensive set of final regulations establishing standards for how businesses protect and store consumers' personal information.

201 CMR 17.00: Standards for The Protection of Personal Information of Residents of the Commonwealth

The regulations are set to take effect on January 1, 2009 (Read the latest update, this has now been extended to May 1st, 2009!)

All companies who have employees, customers, members, contactors maintain some sort of information about these people are now required to take more serious security measures to maintain their confidentiality. 

After reading through these regulations, a lot of these directives made good sense to me but then, I began to wonder on how  do you explain to some people that security really matters? I know of some companies that already maintain good security practices while many others just don't care, don't know how bad their internal security is or in some cases, choose to ignore it altogether.  In 99% of cases that I have encountered, most basic security practices can be implemented at  very little cost and mostly require basic common sense and good internal procedures. 

One my biggest concern is how data is stored on laptops, USB drives and other portable devices.  Having worked on a few of the devices through the years, I discovered that in many cases an incredible amount of personal and confidential data was stored on these devices.  Key staff members and sales people routinely copy entire company databases into their laptops or home computers (convenience, they would argue!) and most business owners at totally oblivious of it because they don't have procedures in place that restrict these practices.  Over 90% of this data is not encrypted and not even protected by a basic password so if it is lost or stolen, anyone has access to it.

if you are interested and want to know if these regulations apply to your business download the following document (Click on the link)

- TSI paper reviewing the Mass. Privacy Law - DOWNLOAD

- IT Audit process conducted by TSI - DOWNLOAD

- Quick Notes reviewing these requirements - DOWNLOAD

- Executive Order 504 - DOWNLOAD


 

Do these regulations apply to my business? (Download)

Posted by Gerard Louise on Wed, Nov 05, 2008 @ 01:07 PM

COMMENTS

Currently, there are no comments. Be the first to post one!
Post Comment
Name
 *
Email
 *
Website (optional)
Comment
 *

Allowed tags: <a> link, <b> bold, <i> italics

Receive email when someone replies.
  
If you would like to be notified when new blog articles are posted on the TSI web site, please add your email address below and click "Submit".
Your email:
Navigate By : 
Skip Navigation Links.
Expand (Day (1)(Day (1)
Expand 2000 (1)2000 (1)
Expand 2007 (1)2007 (1)
Expand bugs (1)bugs (1)
Expand changing (1)changing (1)
Expand computerwold (1)computerwold (1)
Expand Day (1)Day (1)
Expand DST (1)DST (1)
Expand earlier (1)earlier (1)
Expand for (1)for (1)
Expand is (1)is (1)
Expand Light (2)Light (2)
Expand Microsoft CRM (1)Microsoft CRM (1)
Expand Microsoft Events (1)Microsoft Events (1)
Expand New Massachusetts Law regarding Privacy (1)New Massachusetts Law regarding Privacy (1)
Expand Saving (2)Saving (2)
Expand Sharepoint (1)Sharepoint (1)
Expand Small Business Server (1)Small Business Server (1)
Expand this (1)this (1)
Expand Time (1)Time (1)
Expand Time) (1)Time) (1)
Expand Windows (1)Windows (1)
Expand windows home server ed (1)windows home server ed (1)
Expand yea (1)yea (1)
Expand Others (7)Others (7)
[Article Index]
  
   Copyright © 2002 - 2008 Technical
Support International, Inc. (TSI).
All Rights Reserved		   

Technical Support International, Inc.
10 Mechanic Street
Foxboro, MA 02035
Telephone: 508.543.6979
Fax:508.543.1044
info@tsisupport.com