201 CMR 17 Written Information Security Program Check List

The Massachusetts Office of Consumer Affairs and Business Regulation has compiled this checklist to help small businesses in their effort to comply with 201 CMR 17.00.

This Checklist is not a substitute for compliance with 201 CMR 17.00. Rather, it is designed as a useful tool to aid in the development of a written information security program for a small business or individual that handles "personal information." Each item, presented in question form, highlights a feature of 201 CMR 17.00 that will require proactive attention in order for a plan to be compliant.

NSK Inc takes this regulation and all of the other massachusettts compliance laws and regulations in effect (HIPPA, Dodd Frank,  FISMA, etc.) for our clients security very seriously and we work with our clients to make sure that they continue to stay in compliance with these standards. We have created a complete body of technologies, processes and practices designed to protect our client's networks, computers and data from attacks, damage or any other unauthorized access.


WISP Check List



New Call-to-action