201 CMR 17.00 Compliance for Massachusetts

Meet 201 CMR 17.00 audit requirements

Massachusetts General Law Chapter 93H regulation 201 CMR 17.00 was developed to safeguard personal information of residents of the Commonwealth of Massachusetts. This regulation applies to all organizations (companies or persons) that own or license personal information about Massachusetts residents.

To be compliant with 201 CMR 17.00, all affected organizations must develop, implement and maintain an auditable comprehensive written information security program, containing administrative, technical and physical safeguards.

Automate log collection, archiving, and recovery​

Improve your organization’s overall security and compliance posture with LogRhythm. You’ll be able to fully automate log collection, archiving and recovery across your entire infrastructure.

The LogRhythm NextGen SIEM Platform automatically performs log data categorization, identification and normalization to make analysis and reporting easy. Your analysts will receive notifications to clearly identify the most critical events through powerful alarming capabilities.

LogRhythm’s extensive support for both commercial and custom applications gives you comprehensive and efficient collection, processing, review and reporting of log sources specified in 201 CMR security requirements.

Protect your customer data by monitoring information systems and applications in real time

With AI Engine, alarms, forensic investigations, reporting and tails, your team will get immediate notification and analysis of conditions that impact your organization’s customer data. With this information at your fingertips, you’ll be able to identify areas of non-compliance in real time.


Learn more today

Read the Automation Suite for 201 CMR 17.00 Compliance white paper to discover how LogRhythm can help you exceed your compliance requirements. 

See what we've been working on...

See how we're delivering on promises to better serve our customers