Massachusetts Data Security Law

Massachusetts Data Security Law 201

---

Massachusetts has passed a data protection law that is arguably one of the most stringent in the nation. 201 CMR 17.00 requires all persons and businesses with personal information to have an adequate protective system in place to prevent unauthorized access to personal information, as well as encryption for all data containing personal information transmitted through the public network or wirelessly.

The TITUS suite of products allow organizations to quickly comply with CMR. The products help organizations comply with the regulations by automatically locating sensitive personal information in their Microsoft Office documents and Microsoft Outlook email. If sensitive information is found, the TITUS solutions can warn users before they can send a message or attach documents. In addition, messages with sensitive CMR information can be automatically encrypted.

The TITUS suite comes with a pre-configured and pre-installed policy for information governance that defines the policies that must be enforced as part of this CMR. The sub policies include ensuring personal information such as drivers license, social security number, credit card number etc. are located and flagged.

Example of how policy will detect personal information in email & attachments

Policy can be customized to detect any personal information

Massachusetts Data Security Law Solutions Include:

• Message Classification: Classifies, labels, and protectively marks email in Microsoft Outlook, Outlook Web Access, and mobile devices.
• Classification for Microsoft Office: Classifies, labels, and protectively marks documents in Microsoft Office Word, Excel, and PowerPoint.