Videocast: Asset management regulation in 2020 videocast series – The annuity regulatory landscape
The Intersection of Big Data and Insurance Regulation
InsurTech and the Changing Distribution Model
On May 15, 2024, the Privacy Protections (H) Working Group of the National Association of Insurance Commissioners (“NAIC”) held its first meeting since the Spring National Meeting in March. The working group seeks public...more
For over 100 years, the National Association of Insurance Commissioners (NAIC) has been developing model legislation to encourage uniformity among states for the regulation of insurance products. The NAIC model laws and...more
Step right up as we discuss some of 2023’s most notable cybersecurity and privacy regulatory and litigation developments and tips for keeping your program flying high. Regulatory Activity New regulatory requirements now in...more
The first half of 2023 saw a flurry of activity in the privacy and data security spaces. We outline below some of the key developments of interest to the insurance industry....more
On February 1, 2023, the NAIC Privacy Protections Working Group (PPWG) released a draft of Model Law 674 Insurance Consumer Privacy Protection Model Law (Model 674 or Model). Proposed Model 674 is intended to replace Model...more
The first half of 2022 brought plenty of activity in the data privacy and cybersecurity space, much of which is applicable to or of interest to the insurance industry. We outline some of this activity below. Revisions to...more
Vermont Governor Scott signed the Vermont Insurance Data Security Law (available here) (the “VIDSL”), becoming the 22nd state to adopt a cybersecurity statute based on the National Association of Insurance Commissioners...more
Kentucky Governor Andy Beshear recently signed House Bill 474 to become the latest state to enact data insurance security legislation. The new law is modeled after the data security law of the National Association of ...more
Over the last several months, a minority of states amended their data breach notification statutes or enacted sector-specific breach notification requirements. ...more
The NAIC Data Security Model Law (Model 668) continues its journey through the various state legislatures. Whether all 50 states meet the U.S. Treasury-recommended 2022 deadline for adoption of uniform data security...more
The National Association of Insurance Commissioner (NAIC)’s model data security law (“Model Law”) was recently adopted by Maine and North Dakota. This addition brings the total number to states that have joined the NAIC...more
CYBERSECURITY - Cisco/Talos Researchers Find Attackers Using Slack and Discord to Distribute Malware - Another example of the resiliency and creativity of cyber-attackers is outlined in a new blog by Cisco/Talos...more
Two more state governors, those of Maine and North Dakota, have signed bills into law that adopt the National Association of Insurance Commissioners (NAIC) data security model law (Model Law). Maine and North Dakota join...more
As insurers continue to grapple with a number of pressing issues — COVID-19 lockdown, an effective California Consumer Privacy Act, and the pending California Privacy Rights Act — many may have lost track of states’ actions...more
After a brief hiatus due to COVID-19, the NAIC’s Privacy Working Group returned to work on May 5 discussing comments received on the working group’s markup of the NAIC Insurance Information and Privacy Protection Model Act...more
In 2019, many of us were so consumed by preparations for the January 1, 2020, effectiveness of the CCPA that we may have lost track of activities concerning state enactment of the NAIC Insurance Data Security Model Law. To...more
A constantly evolving framework of laws governing how multinational businesses can contact customers to how nonprofits report business income to how overtime is calculated and paid will influence how companies do business...more
In this month's edition of our Privacy & Cybersecurity Update, we take a look at guidance on artificial intelligence released by the U.K. Information Commissioner's Office and the Turing Institute, as well as guidance...more
States continue to implement insurance-specific cyber and data security regulations, drawing on either the National Association of Insurance Commissioners Insurance Data Security Model Law (“Model Law”) or the New York...more
Since July 1, 2019, Delaware, New Hampshire and Connecticut have enacted laws imposing new cybersecurity requirements on insurers. These laws follow similar statutes already operating in at least six other states: Alabama,...more
In this month's edition of our Privacy & Cybersecurity Update, we examine the European Parliament's report on whether and how the use of blockchain technology can comply with the General Data Protection Regulation, as well as...more
New Hampshire recently passed its Insurance Data Security Law based on the National Association of Insurance Commissioner’s (NAIC) Insurance Data Security Model Law. The law will go into effect January 1, 2020....more
On March 1, 2017 the cybersecurity regulation of the New York Department of Financial Services (the DFS Regulation) took effect, requiring subject financial institutions (Covered Entities), including insurance companies, to,...more
On August 2, 2019, New Hampshire became the most recent of many states that adopted an Insurance Data Security Law (Senate Bill 194-FN) modeled after the National Association of Insurance Commissioners’ (NAIC) Insurance Data...more
Delaware (July 31, 2019) and New Hampshire (August 2, 2019) have become the latest states to add to the insurance cybersecurity landscape by enacting information security laws. These laws come on the heels of Connecticut’s...more