Is your Antivirus software up to date? Are your Microsoft critical updates up to date? Better find out because as of March 1st it's against the law in Massachusetts for any computer system containing personal information about any resident of the commonwealth to be left unprotected!
After a number of extensions, the new MA Data Protection Law went into effect March 1, 2010. Massachusetts has enacted one of the most onerous data protection laws in the country. The regulations apply to every individual or entity, including those outside Massachusetts, that maintain personal information regarding Massachusetts residents, and regardless of whether the information is stored in paper or electronic form. To be in compliance, covered entities must ensure that such data is maintained securely, and develop Written Information Security Policies (WISPs).
Here is a quick list of Computer System Security Requirements:
- Secure User Authentication Protocols - Strong passwords, lock-outs after multiple failed login attempts, biometrics when available, etc.
- Secure Access Control Measures - Access to personal information must be restricted to employees who need access to perform their jobs. Unique user IDs and strong passwords are used to restrict access. Vendor supplied passwords should not be used.
- Encryption of Transmitted Records (password protection is NOT enough!)
- Reasonable monitoring of systems, for unauthorized use of or access to personal information.
- Personal information stored on laptops or other portable devices needs to be fully encrypted;
- For files containing personal information on a system connected to the Internet, up to date firewall protection and operating systems updates are required.
- For systems containing personal information, malware protection, anti-virus protection, and security patches must be kept up to date.
- Regular employee training is required on the proper use of computer security and the importance of personal information security.
If you need to jumpstart your readiness process, we'll be offering a free webinar on Thursday March 11 at 12:15pm. Please call (978-692-4200) or email us to reserve your spot and get the dial-in instructions.
If you are looking for more detailed legal information, we will be co-presenting a seminar on the new MA Data Protection Law with attorney Coale Anderson, an attorney and principal at Shub & Anderson, P.C., on the morning of March 26 in Acton, MA. This is a great opportunity to get your more detailed questions answered by an attorney. Sign up today!
Windows 7 - Will my software work?
Are you thinking of moving to Windows 7? So far, our experience with Windows 7 has been excellent. After years of generally advising businesses not to purchase systems with Windows Vista and stick with Windows XP, we are now advising to move forward with the latest operating system - Windows 7. If you are concerned about whether or not your software applications will be compatible, a great place to start is by checking out the Microsoft Windows 7 Compatibility Center. For example, if you click on "Business and Home Office" and then "Tax and Finance" - you can check out whether your Intuit products are compatible. Some quick research ahead of time can save a lot of trouble down the road.
Was this newsletter helpful to you? If so, forward it to a friend or colleague! Do you have suggestions for future newsletter topics or a particular question you'd like to see answered? Send us an email!. We want to write about what's important to you! Click here to read past issues.
Clocks Change March 14!
Sincerely,
Team Ekaru
Introductory Technology Assessment Over 400 local small businesses have chosen Ekaru to manage their computers and networks. We offer a free, no-obligation initial consultation to get started. We'll visit your office, review your network, and make recommendations. Call us at 978-692-4200 or email us to schedule a no-obligation assessment. If you know someone who could benefit from this offer, simply forward this email to them. Thank You!
©2010 Ekaru, LLC. All Rights Reserved.
