After implementation delays and rule changes, new data protection regulations that are widely considered the most stringent in the nation take effect today. The Massachusetts data security regulations require institutions that hold personal data on Massachusetts citizens to encrypt that information and implement written data protection policies, reports the Boston Globe.
Discussion continues and questions abound. Will this set the bar nationwide as the articulation of what constitutes "reasonable security" for personal information? How should companies handle the varying risk of harm standards when dealing with state laws and federal law, such as the HITECH Act?
AddThis
Subscribe To
Posts
Comments
About The Editor and Contributors
Cynthia Larose is a member in Mintz Levin's Corporate Group and leads our Privacy and Security practice. She is a Certified Information Privacy Professional, working with clients in various industries to develop comprehensive information security programs on the front end, and providing timely counsel when it becomes necessary to respond to a data breach. For Cynthia's complete Biography, visit Mintz Levin corporate website here
Contributors
Dianne Bourque - Bio
Elissa Flynn-Poppey - Bio
Haydon A. Keitner - Bio
Lance Kurata - Bio
Kevin M. McGinty - Bio
Jennifer Rubin - Bio
Julia Siripurapu - Bio
Michael S. Arnold - Bio
