3/26/2010
Data breaches are hounding Massachusetts companies, according to a recent Boston Business Journal article.  Over one million Massachusetts residents were affected by data breaches last year. Your company’s databases are a potential gold mine to the cyber-criminal or hacker.

On March 1, 2010, tough new regulations went into effect in Massachusetts, requiring any organization that holds confidential information to take measures to protect that information from loss or theft.

Under the rule, any institution that holds personal data about residents of Massachusetts must create a written policy for protecting the data and must train employees in the policy.

Bob Baker, Executive Director of the Smaller Business Association of New England (SBANE) calls the issue a “ticking time bomb.”

Although TJ MAXX is probably the most widely known example of a hacker attack, a number of organizations have experienced data breaches of varying degrees from State Street Corp. to UMass Amherst, which suffered a breach of a server that held social security numbers and credit card data of an unknown number of individuals.

According to the Boston Business Journal article, of the more than 800 breaches that occurred last year, about 300 were caused by human error. 

Organizations that fail to comply with the new regulations and which suffer a data breach, can be fined up to $5000 for each violation.  In an economy that has seen over 8 million job losses and especially for smaller companies that are struggling to keep their doors open, a data breach fine could be the proverbial straw that breaks the company’s back. 

I have been involved in helping small to medium sized companies stay in business for over 30 years with streamlined, cost effective solutions to their business problems.  I can help your organization identify data security needs, develop data security policies and procedures and train your employees.  Please contact me at 508-730-2480 to schedule a no-cost assessment, or complete the form on our website.