eSecurity Planet

DECEMBER 7, 2023

For example, The Health Insurance Portability and Accountability Act (HIPAA) requires security features such as encryption to protect patients’ health information. In each of these cases, the cracked encryption can lead to leaked data, but the nature of the risk remains distinct.

Encryption 113

Encryption IT Passwords IoT 113

eSecurity Planet

MAY 26, 2023

Equal focus on security and cloud computing capabilities Traditionally, businesses have either had to process sensitive data in memory with major security risks or limit their sensitive data processing in order to protect it; neither approach is ideal for optimal data usability and outcomes.

Encryption 98

Encryption Cloud IoT Blockchain 98

The Last Watchdog

MAY 10, 2021

With RSA Conference 2021 technical sessions getting underway today, I sat down with Fred Kneip, CEO of CyberGRX , to hash over the notion that a lot of good could come from more systematic sharing of the risk profiles that large enterprises routinely compile with respect to their third-party contractors. Crowdsourcing risk profiles.

Risk 195

Risk Insurance Access Security 195

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”.

Insurance 66

Insurance Security Cybersecurity Data breaches 66

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. The Act defines licensees as persons authorized, registered, or licensed under Michigan insurance laws or required to be so. 6491 (Act). MCL § 500.550.

Insurance 66

Insurance Security Cybersecurity FOIA 66

Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. The Privacy Working Group has been reviewing state insurance privacy protections regarding the collection, ownership, use, and disclosure of information gathered in connection with insurance transactions.

Insurance 78

Insurance Paper Privacy Risk 78

Data Matters

MAY 6, 2022

Digital health companies should take note of new data privacy and security developments under the Health Insurance Portability and Accountability Act (HIPAA) that can affect product planning and customer negotiations. What is Digital Health? Comments must be submitted by June 6, 2022. Cybersecurity Industry Newsletter.

Risk 86

Risk Cybersecurity Insurance Authentication 86

Data Protection Report

OCTOBER 3, 2021

The amendment: Expands the definition of “personal information”; Shortens the notification deadline after discovery of a breach from 90 to 60 days; Removes the requirement to consult with law enforcement as part of a risk assessment; Deems compliant any person subject to and in compliance with HIPAA and HITECH; and.

Data breaches 142

Data breaches IT Insurance Passwords 142

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. The changes are effective December 31, 2021.

Insurance 86

Insurance e-Delivery Paper Cybersecurity 86

Security Affairs

OCTOBER 23, 2024

It becomes increasingly difficult to gain complete visibility or transparency that could help security and privacy teams discover sensitive data, identify its security and compliance postures, and mitigate risks. To add to the difficulty, the advent of Generative AI (GenAI) has brought unprecedented security and privacy risks.

Data Privacy 102

Data Privacy Privacy GDPR Compliance 102

Security Affairs

NOVEMBER 14, 2022

Are the directors of a company hit by a cyberattack liable for negligence in failing to take steps to limit the risk. As the risk of a cyberattack grows, it is pivotal to consider whether the directors of a company hit by a ransomware attack, for example, can bear any liability for negligence in failing to take steps to limit the risk.

Insurance 127

Insurance Risk Ransomware Encryption 127

IT Governance

FEBRUARY 15, 2022

Cyber insurance will become more popular and more comprehensive. It’s led to a growing trend for organisations to purchase cyber insurance, which Forbes contributor Emil Sayegh believes will continue in 2022. This market squeeze will certainly affect the cyber insurance industry itself. “We Register now.

Security 142

Security Insurance Authentication Passwords 142

IT Governance

APRIL 3, 2019

US food giant Mondelez is suing insurance company Zurich American for denying a $100 million (£76 million) claim filed after the NotPetya attack. In that regard, it was a job well done, with one report estimating that insurers could expect to pay out more than $80 billion (£61 billion) as a result of the attack.

Insurance 43

Insurance Ransomware Government Paper 43

Schneier on Security

MARCH 26, 2020

Interesting article discussing cyber-warranties, and whether they are an effective way to transfer risk (as envisioned by Ackerlof's "market for lemons") or a marketing trick. Consumers should question whether warranties can function as a costly signal when narrow coverage means vendors accept little risk.

Marketing 99

Marketing Insurance Risk IT 99

Data Matters

DECEMBER 28, 2020

The National Association of Insurance Commissioners (NAIC) held its Fall 2020 National Meeting (Fall Meeting) December 3-9, 2020. NAIC Adopts the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act. Insurance groups will be exempt from filing a GCC if.

Insurance 66

Insurance Paper Risk Analytics 66

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Such outsourcing of ICT services also requires a clear definition of responsibilities, risks and mitigation between financial entities and ICT third-party service providers. That includes banks, insurances, payment institutions, stock market, and many financial management firms (trading, crypt-assets, etc).

Financial Services 83

Financial Services Cloud Cybersecurity Encryption 83

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. Other notable revisions include the following: The definition of “Reciprocal Jurisdiction” was broadened to include U.S. This post summarizes the highlights from this meeting.

Insurance 66

Insurance Blockchain Big data Risk 66

Schneier on Security

FEBRUARY 28, 2024

In the first week of January, the pharmaceutical giant Merck quietly settled its years-long lawsuit over whether or not its property and casualty insurers would cover a $700 million claim filed after the devastating NotPetya cyberattack in 2017. The 9/11 attacks cost insurers and reinsurers $47 billion. 11, 2001, terrorist attacks.

Insurance 106

Insurance Government Cybersecurity Risk 106

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. NAIC Advances Accreditation Standard Process for Revised Credit for Reinsurance Model Law and Regulation, and Term and Universal Life Insurance Reserve Financing Model Regulation.

Insurance 60

Insurance Risk Artificial Intelligence Privacy 60

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. NAIC Advances Accreditation Standard Process for Revised Credit for Reinsurance Model Law and Regulation, and Term and Universal Life Insurance Reserve Financing Model Regulation.

Insurance 60

Insurance Risk Artificial Intelligence Privacy 60

Data Matters

APRIL 15, 2022

Definitions. ” For its definition of personal data, the UCPA excludes deidentified data, aggregated data, and publicly available information. ” For its definition of personal data, the UCPA excludes deidentified data, aggregated data, and publicly available information. The law also does not apply to non-profits.

Privacy 105

Privacy Personal data Sales Insurance 105

Collibra

JUNE 1, 2022

A unified, scalable adaptive solution, Collibra Adaptive Data and Analytics Governance delivers all the capabilities you need to take back control of your data landscape, improve the efficiency of your people and processes, and reduce your data and compliance risks. . Reduce data and compliance risks .

Analytics 97

Analytics Government Compliance Metadata 97

Hunton Privacy

MARCH 24, 2022

Similar to the CPA and VCDPA, the UCPA contains exemptions for covered entities, business associates and protected health information subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), and financial institutions or personal data subject to the Gramm-Leach-Bliley Act (“GLB”). In line with existing U.S.

Privacy 113

Privacy Personal data Sales B2B 113

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity 86

Cybersecurity Privacy Insurance Risk 86

Data Protection Report

JULY 28, 2021

The defendant was a life insurance company and the claimant their insured. With regards to the scope of the data subject access right, the FCJ refers to the legal definition of personal data in Article 4(1) GDPR. In particular, the court held the following: No requirement of “essential biographical information”.

Access 128

Access GDPR Personal data Insurance 128

Data Matters

DECEMBER 11, 2018

The National Association of Insurance Commissioners (NAIC) held its Fall 2018 National Meeting (Fall Meeting) in San Francisco, California, from November 15 to 18, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data. GCC using a risk-based capital aggregation methodology. sector; and.

Insurance 66

Insurance Paper Risk Big data 66

Data Matters

AUGUST 24, 2018

The National Association of Insurance Commissioners (NAIC) held its Summer 2018 National Meeting in Boston, Massachusetts, from August 4 to 7, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data . The NAIC is also considering insurers’ use of big data in underwriting life insurance products.

Insurance 60

Insurance Big data e-Delivery Risk 60

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. NAIC Evaluating Definition of “Best Interest” to Determine Whether to Impose Such a Standard in the Suitability in Annuity Transactions Model Regulation.

Insurance 66

Insurance Paper Risk Analytics 66

Data Matters

SEPTEMBER 3, 2020

The National Association of Insurance Commissioners (NAIC) held its Summer 2020 National Meeting (Summer Meeting) from July 27 to August 14, 2020. NAIC Considers Comments to the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act . GCC Template and Instructions.

Insurance 66

Insurance Paper Artificial Intelligence Big data 66

Data Protection Report

FEBRUARY 23, 2023

In this post, we will describe some of the risks introduced by personal information collection, and some of the legal obligations of vehicle manufacturers in protecting their customers’ privacy. The meaning of “high-impact” is still not clear and it is anticipated that the definition of “high-impact” will be provided in further regulation.

Privacy 85

Privacy Manufacturing Artificial Intelligence Data collection 85

Data Protection Report

OCTOBER 23, 2024

The regulation includes elements of both the Health Insurance Portability and Accountability Act (HIPAA) and the New York Department of Financial Services (NYDFS) cybersecurity regulation. Therefore, covered hospitals may need to revise their risk analysis and management process to comply with the new regulation.

Cybersecurity 45

Cybersecurity Risk Access Financial Services 45

KnowBe4

APRIL 25, 2023

link] [Head Scratcher] More Companies With Cyber Insurance Are Hit by Ransomware Than Those Without? In an interesting twist, new data hints that organizations with cyber insurance may be relying on it too much, instead of shoring up security to ensure attacks never succeed. Date/Time: Wednesday, May 3, @ 2:00 PM (ET) Save My Spot!

Insurance 75

Insurance Security awareness Phishing Ransomware 75

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA).

Data Privacy 145

Data Privacy Compliance Privacy Security 145

eSecurity Planet

OCTOBER 14, 2022

The risks are high as it’s a new, loosely regulated industry with many new technologies that may not be fully vetted or secured.”. The definition of Web3 is a bit fuzzy. But if the industry wants to thrive, there definitely needs to be much more focus on security. So yes, Web3 has become a fierce battleground for cybersecurity.

Cybersecurity 120

Cybersecurity Blockchain Security Insurance 120

Data Matters

AUGUST 9, 2021

In addition, the Act expands the definition of personally identifying information, compromise of which would constitute a data breach, to include patient data and medical data—a general category of health-related information that is not limited to protected health information under HIPAA.

Data breaches 86

Data breaches Privacy Personal data Data Privacy 86

ARMA International

SEPTEMBER 27, 2021

Here, Part 3 discusses how to manage the various DT risks. This discussion includes methods, tools, and techniques such as using personae and identifying use cases that have high business value, while minimizing project risks. This part also discusses managing CS risks such as ransomware, privacy, change management, and user adoption.

Digital transformation 54

Digital transformation Risk IT Computer and Electronics 54

eSecurity Planet

MARCH 17, 2023

From there, these tools send alerts to security teams if and when risks are identified. In this guide, we’ll walk you through some of the most common types of network security protections, how they work, and the top products and services to consider in each category. Also read: What is Network Security?

Security 120

Security Encryption Analytics Cloud 120