Massachusetts Information Security Program
Massachusetts Data Protection Regulations Webinar
Don't Wait Until It's Too Late: Businesses Must Comply With New Massachusetts Identity Theft Regulations By May 1, 2009 – Compliance Efforts Should Start Now
In response to the continuing rise in identity theft, and to further combat this troubling trend, Massachusetts has recently enacted broad regulations governing the use of its residents' "personal information." Under the new regulations, any business that stores or processes personal information concerning Massachusetts citizens has an affirmative legal obligation to put in place a Data Protection Program to safeguard this information. The compliance deadline is May 1, 2009. Failure to comply with the new regulations could result in potentially significant remedies. Waiting until after your business has suffered a security breach to comply with the new regulations is too late – your efforts should start now.
Intellectual Property Partner Ieuan G. Mahony and Associate Maximillian J. Bodoin will explain the new Massachusetts regulations, outline structures for compliant Data Protection Programs, and place the new regulations within the wider state and federal regulatory efforts to protect against identity theft. Specifically, the program will:
- Provide a general overview of the new regulations and a detailed explanation of key concepts and terminology;
- analyze potential risks and security flaws in businesses that the new regulations are designed to address;
- discuss Data Protection Programs, including what they should look like, how they should function, and how they will be evaluated when determining if they comply with the new regulations;
- outline practical steps that you should take, and roadblocks that you will likely face, when implementing a Data Protection Program for your business; and
- address the potential remedies that your business could be subject to for failing to implement a Data Protection Program.
View a recording of the webinar.