Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

NAIC adopts model data security law for insurance industry

Reprints
NAIC adopts model data security law for insurance industry

The National Association of Insurance Commissioners adopted the Insurance Data Security Model Law during a joint meeting of the Executive Committee and Plenary on Tuesday. 

The model law creates rules for insurers, agents and other licensed entities covering data security, investigation and notification of breach, including maintaining an information security program based on ongoing risk assessment, overseeing third-party service providers, investigating data breaches and notifying regulators of a cyber security event, according to a statement issued by the association on Tuesday. 

"Considering the recent series of data breaches, cyber security is more important now than ever," Ted Nickel, NAIC president and Wisconsin insurance commissioner, said in the statement. "Regulators have a critical role to play in protecting consumers as the cyber landscape continues to evolve and this model law sets cyber security customs for insurers to help safeguard consumers." 

The model law progressed through the NAIC Innovation and Technology Task Force and the Cybersecurity Working Group during the NAIC's Summer 2017 National Meeting. It closely follows New York’s cyber security regulation, which took effect in March. 

 

Read Next