Alert August 18, 2009

Massachusetts Regulator Announces Amendments to Data Security Regulations and Delay of Compliance Date until March 1, 2010

The Massachusetts Office of Consumer Affairs and Business Regulation (the “OCABR”) issued a revised version of the Massachusetts data security regulations (201 CMR 17.00), that were originally adopted in 2008.  The compliance date for the revised regulations will be March 1, 2010.  In an accompanying notice, the OCABR indicated that it will hold a hearing Tuesday, September 22, 2009 on the revised regulations and will accept written comments until the close of business on September 25, 2009.  Goodwin Procter will provide more detailed coverage of this development in a separate client alert that will be sent to Alert readers.