Essextec Data Storage Specialists Help You Be Compliant with 201 CMR 17.00 - The Massachusetts Privacy Law
 |
|
|
Join Us for a Webex Event:
Event Schedule |
|
| For More Information Please call 888 519 1518 |
|
| Enroll early. Seating is limited. |
Call Today. Let Our Data Security Specialists help you:
- Secure your data
- Provide proper data disposal to prevent exposure to litigation
- Protect you from data breaches
- Become Compliant to 201 CMR 17.00
Essextec, an IT services and security consulting firm, has already helped multiple companies like yours understand the Massachusetts Privacy Law, which was implemented March 1, 2010, and be compliant with it. We understand compliance may seem like a daunting task and that is why we are offering our services to help streamline this process for you.
The Essextec 201 CMR 17.00 Compliance Assessment consists of three phases. Our services include:
Phase I: Data Review and Questionnaire
Phase II: Onsite Data Gathering
Phase III: Compliance Report and Recommendations
Deliverable:
Massachusetts 201 CMR 17.00 Compliance Assessment Report
Contact us to request more information or to schedule an appointment. To speak to a Data Security Specialist,
call 1.888.519.1518.
SYNOPSIS OF THE LAW:
The new Massachusetts regulations are intended to prevent personal information from being breached in the first place. The law is set as a preventative measure to avoid intentional wrongdoing and inept internal data handling protocols. The law applies to all applicable businesses, regardless of size.
Under the Massachusetts Privacy Law, applicable individuals and businesses must develop, implement, maintain and monitor a comprehensive, written information security program (WISP) to ensure the security and confidentiality of personal information in both physical and electronic format.
Click Here to download The Commonwealth of MA 201 CMR Compliance Checklist.
As previoulsy stated, Essextec has been able to help companies comply with this new law.
Two examples are offered below:
To comply with the law, our client had requirements to encrypt data from multiple databases and applications, multiple operating systems, and hardware platforms. Essextec resolved this by implementing a software encryption key which could be deployed across all their hardware platforms and operating systems. Then, using a combination of hardware and software encryption, we were able to deploy an enterprise-wide solution which could scale with their needs. We were able to take advantage of what the client currently was using, saving them both money and time to deploy. The client is now very satisfied, as we provided a cost-effective and simple solution across their enterprise, plus provided backup recovery capability. It is also important to note that the simplicity of recovery of their data is also very important to them.
- Health Services Company
After analyzing their infrastructure, applications, data, and existing backup software, Essextec was able to determine our client already had the necessary software and hardware in place. Again, we were able to encrypt and comply to the law by only implementing an additional feature already in their existing backup software. Compliance with the law was satisfied in only a matter of hours.