[WebPub] IAP: Upcoming new requirements regarding protecting personal information

Allison Dolan adolan at mit.edu
Wed Jan 6 11:25:13 EST 2010 

It was suggested that the webpub group might find the IAP session  
described below of interest, especially for those that might be  
working on applications involving personal information and/or working  
with 3rd parties who might have access to the personal data as part  
of their development work. (In particular, the Mass regs have new  
requirements for 3rd parties).

===========
To all those handling sensitive information, particularly personal  
information

As many of you may already be aware, Massachusetts has issued  
regulations regarding the protection for personal information such as  
Social Security Numbers, credit card numbers, and bank account numbers.

In order to comply with those regulations, MIT will be implementing a  
new information security program, effective March 1, 2010.  This  
program will include specific requirements for individuals that  
handle the personal information of others, such as HR, finance and  
other administrative functions.

An IAP session (repeated 3 times) is being offered to give members of  
the community  a chance to hear about this new program, as well as  
recommendations for protecting sensitive data in general.  These are  
open enrollment sessions with no advance signup - you are invited to  
attend any session.

Tuesday Jan 12, 10-11:00am, 56-114

Wednesday, Jan 13, noon - 1:00pm, Student Center 20 Chimneys  
(W20-306) - food is allowed, so bring your lunch! light dessert will  
be provided

Thursday,  Jan 21, 3-4:00pm, 56-114

For more information, see http://student.mit.edu/searchiap/iap-8809.html

If you handle personal information or other sensitive information,  
this is a good opportunity to learn about the upcoming information  
security program, and ask questions about specific issues you may have.

If you are not able to attend one of the IAP sessions, or you would  
prefer to have the information shared at a departmental staff  
meeting, please feel free to let me know.

Allison F. Dolan
Program Director, Protecting Personally Identifiable Information
NE49-3021 (mail stop)  NE49-3037p (office)
(617) 252-1461
http://mit.edu/infoprotect

More information about the WebPub mailing list