Machado Consulting

New Massachusetts Law requires all business to protect personal information.
Massachusetts laws require all business to protect personal information. New law will go into effect March 1, 2010. Now is the time to prepare your business for this enactment of this important law.

Massachusetts adopted regulations on Sept. 22, 2008, that will require businesses, wherever located, that store or use information about Massachusetts residents, to implement comprehensive information security programs by March 1, 2010.  Compliance with this new law, referred to as 201 CMR 17, needs to be met by persons who own, license, store or maintain personal information about a resident of the Commonwealth of Massachusetts. This regulation establishes minimum standards to be met in connection with the safeguarding of personal information contained in both paper and electronic records.

What is considered personal information:

If you store a Massachusetts resident last name and first name on computer or on paper AND also store any of the following information, this is considered “personal information” and the new law is applicable to you business.

1. Social Security number
2. Driver's License number
3. Financial Account number (credit card, debit card)
4. Access code that would allow you to access that person financial information

For more information on how Machado Consulting can help you please call us at 508-453-4700 or email us at support@machadoconsulting.com