Yes, after two postponements, it appears that the deadline for complying with the new MA Privacy statute will be January 1, 2010. If you have employees or customers in Massachusetts, and you store personally identifiable information about them on computers, you will be subject to this statute. Given that the fine for each INSTANCE of non-compliance is up to $50,000 and that there were several hundred thousand security breaches around this type of data last year alone, it's no surprise that people are taking notice of this statute and preparing in earnest.
As my firm combines its expertise in SharePoint technologies with some specific capabilities around compliance, we're bringing to market a SharePoint-based tool to manage compliance programs, including the new MA Privacy statute. Accordingly, we're hosting a "lunch and learn" webinar next Wednesday, July 29, featuring:
-- Doug Cornelius, a Chief Compliance officer at a real estate and private equity firm, and noted writer and speaker on compliance issues. If you care about compliance, you need to be reading his blog, "Compliance Building." Doug will speak to the genesis of and requirements under, the statute, and how we can expect it to change as the first wave of adoption gets underway.
-- Bob Boonstra, a Chief Information Officer at a publicly-held pharmaceutical company who has instituted compliance management programs for SEC and FDA requirements. Bob will speak to how he has seen firms institute programs to manage compliance requirements such as this one.
-- Sean Megley, a SharePoint architect and resident "compliantist" at KMA with a long history of working in government contracting, life sciences, and banking enterprises with rigorous compliance requirements. Sean has been building compliance management solutions for years, and will show a solution developed specifically for the new MA privacy statute.
We're looking forward to an enlightening session. You can find details and register here.
Recent Comments