Pay attention to Massachusetts and Nevada
If you are a business professional, and have clients in the Commonwealth of Massachusetts, you are now subject to MA 201 CMR 17.00 (Full compliance required on or before March 1, 2010) : “Standards For The Protection Of Personal Information Of Residents Of the Commonwealth”.
Similarly, the State of Nevada has enacted SB-227 (Effective January 1, 2010) : “…An Act relating to security of personal information; requiring the compliance with certain standards or the use of encryption by data collectors when transferring personal information…”
There are also several efforts underway in the U.S. Congress, most notably, Congressman Bobby Rush has introduced a data privacy bill known as the “Building Effective Strategies to Promote Responsibility Accountability Choice Transparency Innovation Consumer Expectations and Safeguards” Act (a.k.a. “BEST PRACTICES Act”). You can find a greatFAQ about this legislative proposal over at the Information Law Group.
To read the complete blog posting, go to The Secret 1-2-3 Blog.