Boston, MA (PRWEB) May 14, 2010
201CMR17, the new Massachusetts Data Security Law went into effect on March 1, 2010. The regulation is intended to protect the Personal Information of the Massachusetts resident.
The penalties can be quite severe for non-compliance and companies in MA are scrambling to get as much information as possible on the new regulation to determine if it applies to their business.
If your organization has HR files stored in office with employee’s social security numbers or dates of birth, technically the answer is yes. Of course the actions required on your part depend on what it is that you do, how much personal information you or your employees have potential access to and the resources available to you.
One of the first requirements is the need to develop a Written Information Security Program ("WISP"). Be careful however - some websites claim that they will “provide you with the WISP”. Hopefully some instruction is also being provided since this is not a "one size fits all" document.
There has been no shortage of businesses offering consulting services on the subject and many of them are not cheap. Our approach is a bit different – the objective is to give you “easy to process” information on the subject, allowing for an educated decision prior to deciding how to proceed.
If a determination were made that additional information on the subject would be helpful – the development and offering of the “Compliance Support Tool” (CST), may be the answer in regard to taking the next step. The CST is described as a no-nonsense educational on-line tool, designed as a jump-start to understanding Massachusetts Regulation 201.CMR.17, and through the process, finding your organization on the right path to a compliant status. Something on the lines of “just tell me what I have to do” - says the author of the site, adding a short chuckle at the end of the phrase.
The CST is very affordable, providing information in a creative and easy to understand manner beginning with a narrated PowerPoint presentation offering a general overview.
This website, http://www.201CMR17SecurityLaw.com, is unlike anything we've come across on the subject and is created with simplicity, knowledge, creativity and a true desire to make the entire process as painless as possible.