Massachusetts has one of the highest standards for identity protection in the country. Under 201 CMR 17.00, “every person that owns or licenses personal information about a resident of the Commonwealth shall develop, implement, and maintain a comprehensive information security program.” This plan must be written, and the regulation requires the encryption of personal information that is transmitted over public networks, wirelessly, or that is stored on portable devices (when it is technically feasible).

Want to learn more about data encryption for your firm? Attend our October 15th program, Data Encryption: What Smaller Law Firms Need to Do Now.