If you’re a business owner(regardless of where you are located) and your company has personal data for Mass. residents who are your EMPLOYEES or CLIENTS/CUSTOMERS then this law pertains to you.
As Jaikumar Vijayan wrote in his ComputerWorld article - available here - next week (March 1st) is the deadline for companies to “ensure that their contractors, suppliers, technology providers and other third parties comply with a provision of a state data breach law that went into effect in March 2010″
The law MA 201 CMR 17.00 (download PDF) is a set of guidelines that businesses in MA need to follow in order to avoid fines, penalties or even being shut down.
You’re probably wondering: “well I’m not an IT guru so what am I supposed to do?”