What is 201 CRM 17?

201 CRM 17 : Any person or organization, that stores, maintains, or electronically sends Personal Information (PI), must comply with these standards:

Personal Identification

Defined as names and addresses with any of the following:

  • Social security numbers
  • Driver's licenses
  • State issued ID cards
  • Credit or Debit cards
  • Financial account numbers

Encryption

Defined as a method to scramble and decode data with a lock and key.