Extraterritorial MA Information Security Requirements: Compliance Deadline Approaching

January 26, 2009
With the deadline for compliance with the Massachusetts Standards for the Protection of Personal Information quickly approaching, covered entities must develop, implement, maintain, and monitor a comprehensive, written information security program to safeguard all paper and electronic records that contain personal information. This update reviews the new regulations, which are the most aggressive attempt to date to combat identity theft, and will apply to all individuals, corporations, and other legal entities that have personal information about a Massachusetts resident.