ISO 27001

March 1 – Your Vendor Contracts Were Supposed to be Updated

The Massachusetts law 201 CMR 17.00 that forces US organizations to protect the PII of Massachusetts residents went into its final enforcement phase on March 1, 2012. By that date, no exceptions, businesses that send Massachusetts-based PII to vendors (service providers) needed to require in providers’ contracts that they will also abide by the law. (more…)

Data Classification

sensitive data

 

Data Classification – Determining what constitutes “sensitive data” is usually not a difficult thing for most people.  For me personally, it would be my social security #, my account information – banking, credit card information.  And, sadly as the years go by, my birthdate is getting to be more sensitive… (more…)

Go to Top