Massachusetts Data Protection Regulation
Tight Data Security Laws in Massachusetts
One of the nation’s most stringent data security laws, the Massachusetts Data Protection Regulation (MA 201 CMR 17) was once a trailblazing piece of legislation. When enacted, it marked the first time a government body mandated the use of a specific technology to enforce privacy regulations. Massachusetts requires that businesses encrypt all transmitted personally identifiable information (PII) of their customers.
Not only does this law apply to Massachusetts businesses; it applies to any firm conducting business with any resident of Massachusetts, including third-party vendors. In effect, any company that wants to sell anything to a resident of the nation’s 13th largest economy must adopt these measures.
It is simply good business practice to go above and beyond the call of compliance and take every precaution to safeguard all data. Companies who are proactive in protecting their data will be better positioned to retain their clientele and attract new prospects as fears of breach continue to flourish.