On March 10, 2010, Massachusetts' new data safety legislation will take effect. This law, known as 201CMR17, requires all organizations who manage data to have a pro-active plan for preventing identity theft and other problems due to insecure systems and practices.

Long time advocate for simple, everyday security consciousness, Adam Frost, has provided a good beginning point for planning at http://www.201cmr17.com/. His company, Computer Care and Learning, provides consulting support in creating compliance plans.

You can download the state regulations here: http://www.mass.gov/Eoca/docs/idtheft/201CMR1700reg.pdf and read uptodate news from the state division of Consumer Affairs and Business Regulation here: http://www.mass.gov/?pageID=ocatopic&L=3&L0=Home&L1=Consumer&L2=Identity...

If you are a Massachusetts-based Database Designs client and have not yet talked with us about your 201CMR17 planning, please contact us now.