Massachusetts firms 'face issues' with data security compliance

2009-09-16

Time, price and the number of vendors involved are all proving to be significant challenges in complying with new data security rules issued by the Commonwealth of Massachusetts, research has indicated.

These rules were announced earlier this year and will take effect from March 1st 2010, covering data security requirements on organisations in the possession of personal data of state residents.

A poll carried out by Goodwin Procter and the International Association of Privacy Professionals (IAPP) has revealed that 60 per cent of privacy professionals said that their organisations have over ten vendors with access to personal data.

Nearly a third (30 per cent) said that more than100 vendors have access to personal information kept by their companies.

Meanwhile, 33 per cent of respondents claimed their companies had already spent over $50,000 (£30,320) on complying with the upcoming rules.

The IAPP is the biggest association of privacy professionals in the world and recently announced that it had seen growth of 30 per cent in the last two years.

Read more security news.