Executive Office of Technology Services and Security Policies

This policy reinforces the Commonwealth's commitment to protecting its information assets, establishes high-level functions of the Enterprise Security Office, and outlines information security requirements to safeguard information assets and assist the Commonwealth to achieve its strategic objectives.

This standard reinforces the Commonwealth’s commitment to an incident management strategy and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks.

The Information Security Risk Management Standard defines the key elements of the Commonwealth’s information security risk assessment model to enable consistent identification, evaluation, response and monitoring of risks facing IT processes

This standard reinforces the Commonwealth’s commitment to an risk management strategy and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks.

This standard reinforces the Commonwealth's commitment to protecting its information assets, establishes high-level functions of the Enterprise Security Office, and outlines information security requirements to safeguard information assets and assist the Commonwealth to achieve its strategic objectives.

Information, guidelines, techniques and resources for ensuring websites and applications are accessible to all, and comply with the Commonwealth of Massachusetts

This Knowledge Base is your self-service guide to authoring and updating content for Mass.gov. Most of this guide focuses on the Content Management System (CMS), but it also addresses related third-party tools such as Formstack and Google Analytics.

This standard reinforces the Commonwealth’s commitment to a logging and event monitoring strategy and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks.

This policy applies only to the use of Mass.gov. As you navigate Mass.gov. Other websites may have individual privacy policies tailored to the interactions available through each site. You should examine the privacy policy of any website, including other Commonwealth sites, that you access using Mass.gov.

The policies below pertain only to Mass.gov content; individual agencies may have different policies. Please be sure to review the privacy policies and terms of use for any social media accounts you access through a link from Mass.gov as they may differ based on the agency hosting the content.