Bryley complies with Massachusetts 201 CMR 17.00
On March 1st, 2010, the Commonwealth of Massachusetts mandated that all organizations secure and continuously protect the personal information of Massachusetts residents, both physically and electronically. (The statute is Mass. 201 CMR 17.00.)
In 2009, Bryley Systems complied with all requirements of 201 CMR 17.00 and continues to meet and exceed these requirements. (We estimate that our initial effort in 2009 to comply with this statute consumed over 250 hours and required significant out-of-pocket expenditures in additional security equipment and software.)
Because 201 CMR 17.00 requires the protection of personal information of Massachusetts residents, we believe organizations have greater levels of risk based on their business needs and processes. We classify organization risk levels as follows, based on the information retained and processed within the organization:
- Low risk – Organizations that only retain employee data
- Moderate risk – Organizations that process credit cards
- High risk – Organizations that retain and process financial information
Bryley Systems can help your organization comply with the technical aspects of Massachusetts 201 CMR 17.00.
Fill in our quick form.
We’ll schedule an introductory phone call.
We’ll take the time to listen and plan the next steps.
