Kroll Fraud Solutions Blog – A Dialogue on Data Security

Last week, Howard Schmidt, a cybersecurity coordinator and special assistant to the President, blogged about the White House efforts to advance legislation that would address cybersecurity. This particular topic is nothing new – countless others have discussed the need for federal legislation. But what is interesting is how this post encapsulates the progression of the argument over the past few years.

What was once considered largely a consumer issue has transformed into a matter of state security. Accountability to consumers is still very important, but as the technology utilized by companies, governments and even individual citizens – not to mention the bad guys – advances at a dizzying pace, the objectives of a federal law now include much more than just breach notification.

On Monday, MA 201 CMR 17.00, which protects personal information collected from consumers, will take effect in Massachusetts. The new rules are meant to ensure the security and confidentiality of personal information, to protect against anticipated threats to the security or integrity of such information, and to safeguard against unauthorized access to and use of personal information in a manner that creates a substantial risk of identity theft or fraud.