New MA Information Security Regs
The BBA Privacy Law Committee (co-chaired by Peter M. Lefkowitz of Oracle, Mark E. Schreiber of Edwards Angell Palmer & Dodge and Joseph J. Laferrera of Gesmer Updegrove) attracted over 100 people at its recent panel discussion about the new Massachusetts information security regulations, 201 CMR 17.00, which take effect January 1, 2009. David Murray, General Counsel for the Office of Consumer Affairs and Business Regulation (OCABR) discussed OCABR’s approach to drafting the regulations and shared his views on the scope of the regulations' various obligations, including maintaining a detailed information security program; encrypting data on laptops and removable media and in transit; and requiring service providers to certify their compliance. For the materials provided at the meeting click here. |
