What does the Massachusetts Personal Information Security Regulation require as it relates to encryption of personal information?
What does the Massachusetts Personal Information Security Regulation require as it relates to encryption of personal information?
The Massachusetts Personal Information Security Regulation mandates the encryption of all personal information of Massachusetts residents when it is stored on portable devices. The regulation specifically focuses on protecting data on devices that are more vulnerable to loss or theft, such as laptops and other portable storage, to safeguard personal information effectively.
D is correct. Page 176 of the learning material
I also go with D, but this is a tricky one as nothing too specific is mentioned in the training materials.
In 2010, Massachusetts adopted a more prescriptive encryption rule. The Massachusetts Personal Information Protection Regulation states that all parties that “own or license” personal information pertaining to Massachusetts residents must “encrypt all personal information stored on laptops or other portable devices,” as well as wireless transmissions and transmissions sent over public networks.
D is correct.