Data Protection Report

FEBRUARY 2, 2024

On January 17, 2024 the New York Department of Financial Services (“NYDFS”) published a Proposed Insurance Circular Letter (“Proposed Circular”) regarding the use of artificial intelligence systems (“AIS”) and external consumer data and information sources (“ECDIS”) in insurance underwriting and pricing. Actual Actuarial Validity.

Insurance 78

Insurance Artificial Intelligence Risk Compliance 78

Krebs on Security

AUGUST 27, 2020

Ngo’s cooperation with the government ultimately led to 20 arrests, with a dozen of those defendants lured into the open by O’Neill and other Secret Service agents posing as Ngo. But based on the records they did have, the government estimated that Ngo’s service enabled approximately $1.1

Retail 344

Retail Government Access Insurance 344

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”. O.R.C. §§ 3965.01, 3965.04.

Insurance 67

Insurance Security Cybersecurity Data breaches 67

Data Protection Report

OCTOBER 3, 2021

The amendment: Expands the definition of “personal information”; Shortens the notification deadline after discovery of a breach from 90 to 60 days; Removes the requirement to consult with law enforcement as part of a risk assessment; Deems compliant any person subject to and in compliance with HIPAA and HITECH; and.

Data breaches 142

Data breaches IT Insurance Passwords 142

Krebs on Security

FEBRUARY 25, 2021

Labor Department’s inspector general said this week that roughly $100 million in fraudulent unemployment insurance claims were paid in 2020 to criminals who are already in jail. Fraudsters involved in filing jobless benefit claims have definitely taken notice of ID.me’s efforts. To screen out fraudsters, ID.me

Authentication 335

Authentication Insurance Personal data Encryption 335

The Last Watchdog

APRIL 3, 2019

Identity governance and administration, or IGA , has suddenly become a front-burner matter at many enterprises. Related: Identity governance issues in the age of digital transformation. Not only is the notion of what comprises a perimeter shifting, the definition of what constitutes a “user” is metamorphizing, as well.

Digital transformation 140

Digital transformation Insurance Compliance Healthcare 140

eSecurity Planet

APRIL 29, 2024

Governance, risk, and compliance (GRC): Tracks data risks in a daily regulatory context with less attention paid to technologies, strategies, and business goals. For example, the Health Insurance Portability and Accountability Act (HIPAA) regulates personal health information and imposes fines for data breach or data inaccessibility.

Risk 67

Risk Compliance Communications Insurance 67

Collibra

APRIL 1, 2021

Data governance is the essential foundation for organizations looking to create business value from data. Setting up effective data governance, however, can be quite challenging. What is an operating model in data governance? The operating model is the basis for any data governance program. Operating model example.

Government 89

Government Digital transformation Communications Privacy 89

Krebs on Security

JULY 27, 2020

She shared with me a copy of the lease, which included a fraudulent ID and even a vehicle insurance card for a Land Cruiser we got rid of like 15 years ago. “It’s still not good by any means, but it’s definitely better for consumers than it is for businesses. ” PHANTOM OFFICES. . ” RECYCLING VICTIMS. .

Energy and Utilities 363

Energy and Utilities Computer and Electronics Insurance Risk 363

Thales Cloud Protection & Licensing

FEBRUARY 25, 2025

Yet, despite the growing importance of managing external identities, the industry lacks a unified definition of B2B IAM. Some even consider it a combination of identity federation, delegated administration, and access governance. Each use case demands different capabilities, making a universal definition even harder.

B2B 71

B2B Access Privacy Risk 71

erwin

FEBRUARY 7, 2019

As such, traditional – and mostly manual – processes associated with data management and data governance have broken down. The banking, financial services and insurance industry typically deals with higher data velocity and tighter regulations than most. Metadata-Driven Automation in the Insurance Industry.

Metadata 96

Metadata Healthcare Insurance Financial Services 96

Krebs on Security

JUNE 30, 2021

In a report released in 2019 (PDF), Agari profiled a group it dubbed “ Scattered Canary ” that is operating principally out of West Africa and dabbles in a dizzying array of schemes, including BEC and romance scams, FEMA and SBA loans, unemployment insurance fraud, counterfeit checks and of course money laundering. Image: Agari.

Insurance 306

Insurance IT Education Government 306

Hunton Privacy

OCTOBER 14, 2021

Additional bills, amending the California Confidentiality of Medical Information Act (“CMIA”) and the California Insurance Code, also were also signed into law. AB-825 : This bill amends California’s (1) data breach notification law (for both government agencies (Cal. Medical Data: CMIA and Californian Insurance Code Amendment Bill.

Privacy 98

Privacy Insurance Security Data breaches 98

Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. The Privacy Working Group has been reviewing state insurance privacy protections regarding the collection, ownership, use, and disclosure of information gathered in connection with insurance transactions.

Insurance 78

Insurance Paper Privacy Risk 78

Collibra

MARCH 11, 2021

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. Focus on the operating model.

Government 59

Government Communications Insurance Customer Experience 59

The Last Watchdog

SEPTEMBER 20, 2019

Local government agencies remain acutely exposed to being hacked. However, at this moment in history, two particularly worrisome types of cyber attacks are cycling up and hitting local government entities hard: ransomware sieges and election tampering. Smaller organizations by definition are resources-strained.

Ransomware 153

Ransomware Government Security Retail 153

Hunton Privacy

JUNE 22, 2020

The amendments to Vermont’s Security Breach Notice Act include expanding the definition of Personally Identifiable Information (“PII”), expanding the definition of a breach to include login credentials and narrowing the permissible circumstances under which substitute notice may be used.

Data breaches 107

Data breaches Privacy Education Data Privacy 107

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA).

Data Privacy 145

Data Privacy Compliance Privacy Security 145

erwin

MARCH 30, 2020

Managing and Governing Data From Lots of Disparate Sources. This data will be collected from organizations such as, the World Health Organization (WHO), the Centers for Disease Control (CDC), and state and local governments across the globe. These numerous data types and data sources most definitely weren’t designed to work together.

Metadata 122

Metadata IT Government Healthcare 122

Hunton Privacy

AUGUST 2, 2021

In passing the law, Connecticut joins a number of other states in expanding the definition of “personal information” in its data breach notification statute. requiring “preliminary substitute notice” to individuals if a business cannot provide direct notification within the 60-day notification timeframe. Cybersecurity Safe Harbor (HB 6607).

Cybersecurity 87

Cybersecurity Insurance Military Data Privacy 87

Collibra

DECEMBER 1, 2020

However, once you have a system of record in place for your data, your organization can implement many valuable data governance use cases more easily. . In this post, we’ll highlight the top three most valuable data governance use cases. Each one depends on a data governance and stewardship function already being in place.

Government 59

Government Analytics Marketing Unstructured data 59

Hunton Privacy

SEPTEMBER 1, 2020

Not disclosing, subject to specified exceptions, a consumer’s genetic data to certain entities ( e.g. , those responsible for making decisions regarding health insurance, life insurance or employment). The Act also excludes from the definition of genetic data, “deidentified data,” as defined in the Act.

Privacy 85

Privacy Insurance Marketing Information governance 85

IT Governance

APRIL 3, 2019

US food giant Mondelez is suing insurance company Zurich American for denying a $100 million (£76 million) claim filed after the NotPetya attack. The UK government and the CIA blame the attack on Russian state-sponsored hackers, claiming it was the latest act in an ongoing feud between Russia and Ukraine. Was NotPetya an act of war?

Insurance 45

Insurance Ransomware Government Paper 45

AIIM

JULY 24, 2019

The direction of document processing automation over the next three years is definitely trending away from paper to a more digitally focused approach; 70% of survey respondents indicate that they plan to expand document processing to include more digitally-born documents this year. Survey Findings.

Information capture 131

Information capture Digital transformation Paper Customer Experience 131

Collibra

APRIL 11, 2022

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. What are data governance best practices?

Government 52

Government Communications Insurance Customer Experience 52

erwin

FEBRUARY 19, 2021

Connect physical metadata to specific data models, business terms, definitions and reusable design standards. Govern data. Develop a governance model to manage standards, policies and best practices and associate them with physical assets. An enterprise data governance experience. Analyze metadata. Map data flows.

Metadata 110

Metadata Digital transformation Government Healthcare 110

Hunton Privacy

MAY 10, 2022

The CTDPA exempts certain entities, including, for example, state and local government entities, nonprofits, higher education institutions, financial institutions subject to the Gramm-Leach-Bliley Act (“GLB”), and qualifying covered entities and business associates subject to the Health Insurance Portability and Accountability Act (“HIPAA”).

Privacy 118

Privacy Personal data Sales B2B 118

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. Other notable revisions include the following: The definition of “Reciprocal Jurisdiction” was broadened to include U.S. This post summarizes the highlights from this meeting.

Insurance 67

Insurance Blockchain Big data Risk 67

ARMA International

APRIL 18, 2022

The purpose of this article is to remove the fear and intimidation of domestic and global data protection laws and show how these laws and requirements are consistent with the existing objectives of your records retention schedule and information governance policy. Definition and Purpose of a Records Retention Schedule.

Personal data 116

Personal data GDPR Privacy Records Management 116

erwin

JUNE 27, 2019

Additional challenges, such as increasing regulatory pressures – from the General Data Protection Regulation (GDPR) to the Health Insurance Privacy and Portability Act (HIPPA) – and growing stores of unstructured data also underscore the increasing importance of a data modeling tool.

Unstructured data 81

Unstructured data Metadata Analytics GDPR 81

Data Protection Report

OCTOBER 23, 2024

The regulation includes elements of both the Health Insurance Portability and Accountability Act (HIPAA) and the New York Department of Financial Services (NYDFS) cybersecurity regulation. The regulation also requires that the hospital’s cybersecurity policies address data governance and classification.

Cybersecurity 45

Cybersecurity Risk Access Financial Services 45

eSecurity Planet

FEBRUARY 14, 2023

Growth has definitely been robust. First of all, cybersecurity is becoming a “must have” for businesses and governments. The growing number of data privacy regulations has raised the potential consequences of cybersecurity breaches, spurring demand for GRC (governance, risk, and compliance) software.

Compliance 121

Compliance Security Cybersecurity Marketing 121

Data Matters

DECEMBER 28, 2020

The National Association of Insurance Commissioners (NAIC) held its Fall 2020 National Meeting (Fall Meeting) December 3-9, 2020. NAIC Adopts the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act. Insurance groups will be exempt from filing a GCC if.

Insurance 67

Insurance Paper Risk Analytics 67

Data Matters

MAY 6, 2022

Digital health companies should take note of new data privacy and security developments under the Health Insurance Portability and Accountability Act (HIPAA) that can affect product planning and customer negotiations. What is Digital Health? implement stronger authentication solutions, such as multifactor authentication.

Risk 87

Risk Cybersecurity Insurance Authentication 87

Hunton Privacy

FEBRUARY 1, 2024

This follows the definition proposed by the European Parliament, which is aligned with the Organization for Economic Co-operation and Development’s definition of AI. The leaked text substantially diverges from the original proposal by the European Commission, which dates back to 2021.

Risk 114

Risk Education Artificial Intelligence Insurance 114

IT Governance

DECEMBER 11, 2023

Only 3 definitely haven’t had data breached. Source (New) Transport USA Yes 129,611 Tcman Source (New) Manufacturing Spain Yes 108 GB (179 files) Compass Group Italia Source (New) Hospitality Italy Yes 107 GB Pan-American Life Insurance Group, Inc. Incorporated Source (Update) Insurance USA Yes 7,361 Advantis Global, Inc.

Data Privacy 97

Data Privacy Energy and Utilities Privacy Manufacturing 97

Data Matters

DECEMBER 11, 2018

The National Association of Insurance Commissioners (NAIC) held its Fall 2018 National Meeting (Fall Meeting) in San Francisco, California, from November 15 to 18, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data. systemic risk of insurers with other parts of the financial system, notably the banking.

Insurance 67

Insurance Paper Risk Big data 67