Podcast: Complying with Massachusetts Data Security Regulations

Nick Fishman

We are intrigued by how quickly and stealthly (word? we’ll add that to the “Nicktionary”) the March 1st deadline for complying with the new Massachusetts Data Security Regulations came and went.  We also think that there isn’t a whole lot of information out there about exactly who this affects and how they can comply; not even from the state’s attorney general.  So we sought the expert advice of Massachusetts attorney Michael S. Kraft to help educate us.  Check out our podcast below which highlights what the regulations entail, who they affect and how companies can get in compliance.  While the regulations are fairly sweeping and apply to more than just human resource practices, we focused on the personal data employers receive from job applicants and their employment applications and background check releases.

Also, Michael offered the following compliance checklist for employers:

  • Develop a written information security plan (WISP);
  • Identify all foreseeable risks in your organization by examining every nook and cranny where data enters, leaves or is stored;
  • Implement security policies and procedures and train your employees
  • Secure all paper and electronic records; provide encryption
  • Obtain written assurances from all vendors that they are compliant
  • Regularly monitor and review to insure compliance

Nick Fishman
Follow Me

Nick Fishman

Nick Fishman is the co-founder of EmployeeScreenIQ, a leading, global employment background screening provider, and serves as the company’s executive vice president and chief marketing officer. He pioneered the creation of EmployeeScreen University, the #1 educational resource on employment background checks for human resources, security and risk management professionals. A recognized industry expert, Nick is a frequent author, presenter and contributor to the news media. Nick is also a licensed private investigator in the states of Ohio and Texas.
Nick Fishman
Follow Me
Tweet
Share
Email
Share