Read this Digg Article:
ARE YOU IN COMPLIANCE?
Does your company store and/or maintain personal information about a resident of Massachusetts? Do you have client databases, direct deposit records, payroll files, 401K information, employee records files or a QuickBooks company database? If so you need to be aware of this new regulation.
The new Massachusetts General Law (M.G.L.) Chapter 93H also known as 201 CMR 17 requires that companies that own, license, store or maintain personal information about a resident of the Commonwealth of Massachusetts establish minimum standards in safeguarding the personal information contained in both paper and electronic records. This new law's further purpose is to:
Ensure security and confidentiality of information consistent with industry standards;
Protect against anticipated threats or hazards to the security or integrity of information;
Protect against unauthorized access to or use of such information
Protect against a data breach
This law goes into effect January 1, 2010