The MA 201 CMR 17 Regulation was established to protect the personal information of Massachusetts residents. In 2007, the Massachusetts Legislature passed a comprehensive set of laws addressing data breaches. Under that law are a set of regulations that affect any business that collects and retains personal information of its customers. For the purpose of these regulations, "personal information" includes names, social security numbers, driver's license numbers or financial account numbers, including credit or debit card numbers.
On February 12, 2009, the Office of Consumer Affairs and Business Regulation filed final regulations that will protect personal information of residents of the Commonwealth. The latest version sets forth base standards for safeguarding both paper and electronic records.
The MA 201 CMR 17 regulation applies to any organization that owns, stores, and maintains personal data involving a resident of Massachusetts (specifically those who collect and retain such data for commercial purposes).
MegaplanIT’s experience with these assessments allows us to guide you through the MA 201 CMR 17 regulation compliance process quickly and efficiently. Our security specialist will begin by assessing your current state of compliance in regards to the standards set forth by the Commonwealth of Massachusetts. Once this has been determined, our consultants will offer remediation options to help you effectively reach full compliance.