Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Health records, private information up stakes for cyber security

Reprints

When developing mobile platforms for workers compensation claims, insurers need to take basic measures to brush up on their cyber security protections and pay close attention to evolving privacy laws, experts say.

With workers comp claims, insurers have to protect not only health records but also Social Security numbers and personally identifiable information, said Michelle Leighton, vice president and senior claim consultant for Conner Strong & Buckelew based in Marlton, New Jersey. Whether that data is transmitted through an app or a website, insurers still have to work to protect it, she said.

Insurers should consider hiring outside consultants to review their cyber security practices and conduct employee training regarding phishing messages or what information not to release, Ms. Leighton said.

Insurers need to be aware of disgruntled employees who may be distributing protected claimant information, said Tom Ketcham, chief information officer and executive vice president of Warrenton, Virginia-based Intensity Analytics Corp.

Claimants and insurers can verify whether their insurers are taking simple measures to safeguard their data by asking for a copy of their privacy or cyber security policy or asking about their encryption practices, Mr. Ketcham said.

To improve their security measures, insurers can tap into "passive biometrics," Mr. Ketcham said. For example, "The way that you draw your finger across the screen is unique to you." he said.

Using such characteristics are an alternative to using biometric verification methods like facial recognition, which he is concerned about due to the possibility of hackers stealing such irrevocable identifiers.

“You need something beyond just a user name and password to make sure it’s actually (the claimant),” Mr. Ketcham said. “As we move into a big data world, the most important thing is how do we connect a physical person to a data event?”

Read Next

  • Comp firms face challenges going mobile

    There are mobile applications for almost any financial transaction — everything from banking to renters insurance — but workers compensation insurers and third-party administrators have not joined the app bandwagon, partly due to the complexities of the state-based comp system.