Privacy and Security Alert: Massachusetts Extends Deadline for Compliance with Data Security Regulations to January 1, 2010


On February 12, 2009, the Massachusetts Office of Consumer Affairs and Business Regulation (OCABR) amended the Commonwealth’s Data Security Regulations (201 C.M.R. 17.00) (the “Regulations”). The Regulations mandate that any entity that stores personal information (a combination of name and Social Security number, bank account number, or credit card number) of Massachusetts residents must encrypt the information when the information is stored on portable devices, or transmitted wirelessly or on public networks. For a detailed description of compliance standards, see our previous alerts (January 22, 2008, October 2, 2008, October 31, 2008, and January 30, 2009).

Please see full alert for more information.

LOADING PDF: If there are any problems, click here to download the file.

Published In: General Business Updates, Consumer Protection Updates, Privacy Updates

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Mintz Levin | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »


Mintz Levin is a full-service, general practice law firm with approximately 450 attorneys serving... View Profile »

Follow Mintz Levin:

Reporters on Deadline