Massachusetts Data Protection Regulations

As a reminder, Massachusetts has enacted stringent data protection regulations (the Massachusetts Standards for the Protection of Personal Information of Residents of the Commonwealth, 201 C.M.R. 17.00 et seq. (the “data protection regulations”) and data disposal legislation (Mass. Gen. Laws ch. 93I) (the “disposal law”). These laws likely apply to your business to the extent that you …

Continue reading Massachusetts Data Protection Regulations

Client Alert: 4,500 Companies Reeling as EU’s Highest Court Invalidates Safe Harbor

Last week, on October 6, the Court of Justice of the European Union (“CJEU”) issued a binding judgment invalidating the European Commission Decision that authorized the EU-U.S. Safe Harbor arrangement.  For the past fifteen years, this arrangement has been relied upon by many businesses to transfer personal data from the European Union to the United …

Continue reading Client Alert: 4,500 Companies Reeling as EU’s Highest Court Invalidates Safe Harbor

March 1, 2012 Service Provider Contract Deadline Under the Standards for the Protection of Personal Information of Residents of the Commonwealth

March 1, 2012 is the deadline for pre-March 2010 contracts to comply with the third-party service provider contract requirement of the Massachusetts Standards for the Protection of Personal Information of Residents of the Commonwealth (the “Regulations”). As of March 12, 2012, all pre-March 2010 contracts with third-party service providers (with access to personal information) must …

Continue reading March 1, 2012 Service Provider Contract Deadline Under the Standards for the Protection of Personal Information of Residents of the Commonwealth