By Paul Parisi, President & Founder
A written information security program (“WISP”) is a critical requirement for all Massachusetts organizations to have in place to protect their businesses. In December we held an in-depth seminar on this very topic. We want to share some of the highlights.
- Did you know that if you simply lose a USB memory stick that has any client information on it, you need to report it to the Attorney General?
- Did you know that you must have written policies on how you will protect any and all paper or digital information about customers, vendors and employees?
Massachusetts has a document which outlines some of your responsibilities and safeguards: (https://www.mass.gov/ocabr/docs/idtheft/sec-plan-smallbiz-guide.pdf). You should review it and see where you stand.
We also took some time and prepared a helpful checklist that you should review as soon as possible. This will help you understand where your business is and what you may need to do to be in compliance. If you need help, simply give us a call at 978.223.2959.