Creating A Written Information Security Plan (Wisp) Is A Key Component Of Compliance Pursuant to 201 CMR 17.00, the Massachusetts Privacy Law, your entity must develop, implement, maintain and monitor a comprehensive Written Information Security Program (WISP) to ensure the security and confidentiality of personal information in both physical and electronic format. The actual scope ... more

The Commonwealth of Massachusetts enacted 201 CMR 17.00 which is designed to protect state citizens’ personal information. This law, which has already been revised and postponed three times, now requires all covered entities to achieve full compliance by March 1, 2010. Does the new Massachusetts privacy law apply to a company or entity that is ... more