Articles: Blogs

The Massachusetts Data Protection Law: Act Now, Warns IT Governance

Press Releases - 15th January 2010

Allentown, PA, January 15, 2010 – With the deadline only weeks away, IT Governance is offering the fastest possible toolkit solution to the compliance requirements of the Massachusetts Data Protection Law 201 CMR 17.00.

Alan Calder, Chief Executive of IT Governance, warns: “There is no time to waste. Every organization which collects, owns or licenses personal information about a resident of Massachusetts must fully comply with 201 CMR 17.00 on or before March 1, 2010.”

The law covers both paper and electronic records, which must be protected by a written information security plan, regularly audited.

“We understand the complexities of the law,” continues Calder, “and we understand that organizations will need help – and fast – to comply in time. That’s why we have produced The 201 CMR 17.00/ISO 27001 Toolkit.”

Available now as an immediate download, this unique toolkit is specifically tailored to help organizations meet the deadline, with over 450 pages of fit-for-purpose information. There are pre-written policies, procedures and templates, as well as extensive guidance on the 201 CMR 17.00 requirements. Furthermore, the Toolkit includes a copy of frequently asked questions from the Massachusetts Office of Consumer Affairs and Business Regulation, a business continuity plan and project staff training slides.

Calder continues: “Our customers have already told us that this toolkit offers the only way to achieve compliance in time. It’s a product that literally saves months of work, not least by helping organizations avoid costly trial-and-error dead ends. Compliance with the law is mandatory – it’s as simple as that.

“It’s good to see laws fighting back against poor information security, which can lead to criminal activities, such as identity fraud. Now we need to provide the tools to ensure organizations can meet the demands of these laws.

“Compliance with 201 CMR 17.00 can essentially be achieved by implementing the best practice international information security standard ISO27001, alongside some additional modifications customised precisely for the new law. Our toolkit is specifically designed to meet those objectives.”

Details of how to buy The 201 CMR 17.00/ISO 27001 Toolkit, priced at $899, can be found at: