We monitor data breaches reported to the Massachusetts Attorney General. If your information was exposed, you may qualify for compensation — at no cost to you.
Massachusetts Data Security Regulations (201 CMR 17.00) & M.G.L. c. 93H
Massachusetts has some of the nation's most rigorous data security requirements. 201 CMR 17.00 requires every company holding Massachusetts resident data to maintain a written information security program (WISP) — and failure to have one is itself a violation. Notification is required within a reasonable time and AG must be notified.
Massachusetts residents can pursue claims under Chapter 93A, which provides minimum $25 per violation — and triple damages for intentional violations. If a company lacked a proper security program, that's automatic liability.
No active cases found for Massachusetts at this time. Check back — we update daily from the Massachusetts AG database.
Were you affected by a Massachusetts data breach? Find out if you qualify for compensation — no cost, no obligation.
Check My Eligibility →