Massachusetts 201 CMR 17.00: Standards for The Protection of Personal Information of Residents of the Commonwealth, a new Massachusetts law. This law now applies to all PII in your organization. Businesses can be subject to a fine of up to $50,000 for each instance of improper disposal of PII. The deadline for compliance has been extended from 1 Jan 09 to 1 May 09. Jack Daniel has written several great posts on what this new law means. You can also access a video of a presentation he just made to the Boston chapter of the National Information Security Group.”]
Source: https://taosecurity.blogspot.com/2008/12/letters-you-will-need-to-know-201-cmr.html