Massachusetts AG Creates “Data Privacy and Security Division”; What Enforcement Changes Will Follow?

Massachusetts Attorney General Maura Healey recently announced the creation of the Data Privacy and Security Division within her office, with the stated goal of “protect[ing] consumers from the surge of threats to the privacy and security of their data in an ever-changing digital economy.”

The leadership of the Office of the Attorney General’s (OAG’s) privacy and security efforts will not change:  Sara Cable, who has served as the Director of Data Privacy and Security within the OAG’s Consumer Protection Division, will be promoted to serve as Chief of this new Data Privacy and Security Division.

So what does this mean in terms of enforcement?  Clearly, privacy and security is now viewed as a higher priority within the OAG.  More financial resources and personnel will be put toward monitoring and enforcement.  And what subjects will be the focus of the OAG’s efforts?  According to the OAG press release suggests a mix of enforcement and policy objectives:

  • expanding the OAG’s work protecting consumers’ data privacy;
  • empowering consumers in the digital economy;
  • promoting equal and open access to the internet; and
  • investigating and enforcing the Massachusetts Consumer Protection Act and Data Breach Law to protect the security and privacy of consumers’ data.

Again, not much different from what the OAG is doing in this space right now.  But expect more of all of it.

Leave a Reply

Your email address will not be published. Required fields are marked *