Hunton Privacy

OCTOBER 14, 2021

Additional bills, amending the California Confidentiality of Medical Information Act (“CMIA”) and the California Insurance Code, also were also signed into law. Medical Data: CMIA and Californian Insurance Code Amendment Bill. mental health, sexual health) or a situation in which disclosure would endanger the individual.

Privacy 98

Privacy Insurance Security Data breaches 98

Hunton Privacy

FEBRUARY 25, 2020

Incident readiness includes having a state-of-the-art incident response plan, conducting tabletop exercises, implementing a vendor management program and having adequate cybersecurity insurance. Sotto stresses that tabletop exercises are especially important in building muscle memory to handle the inevitable cyber attack.

Insurance 71

Insurance Data breaches Cybersecurity Privacy 71

Adam Levin

MARCH 18, 2020

While the transition to remote appointments may help flatten the curve of Covid-19 cases and provide much-needed relief to medical professionals, it does create a new set of cybersecurity concerns, especially regarding compliance with the Health Insurance Portability and Accountability Act (HIPAA ).

Communications 97

Communications Insurance Compliance Cybersecurity 97

Krebs on Security

SEPTEMBER 2, 2021

“A number of health insurance companies have wellness programs to encourage employees to exercise more, where if you sign up and pledge to 30 push-ups a day for the next few months or something you’ll get five wellness points towards a $10 Starbucks gift card, which requires 1000 wellness points,” Bill explained.

Authentication 326

Authentication Passwords Access Search queries 326

Security Affairs

FEBRUARY 26, 2023

If you want to also receive for free the newsletter with the international press subscribe here.

Security 98

Security Military Ransomware Insurance 98

Data Matters

JANUARY 28, 2022

Create, Maintain, and Exercise a Cyber Incident Response, Resilience, and Continuity of Operations Plan. Prominent examples include the NY DFS Cyber Regulations , California Consumer Privacy Act (“CCPA”) , NY SHIELD Act , Massachusetts data security law , and the numerous Insurance Data Security laws.

Cybersecurity 157

Cybersecurity Financial Services Authentication Government 157

CGI

MAY 27, 2016

Time and tide waits for no man – IoT in Insurance. This old saying could also be applied for what is happening in the insurance market with IoT and that given the drive behind IoT in both the consumer and business markets. For example, car insurance could be varied between theft and fully comprehensive when the Car is not being used.

Insurance 40

Insurance IoT Marketing Manufacturing 40

Data Matters

FEBRUARY 6, 2019

The stolen information allegedly included names and identifying information, hashed passwords, security questions and answers, family information, Social Security numbers, lab results, health insurance information, doctor’s names, and medical conditions, among other things.

Data breaches 83

Data breaches Computer and Electronics Security Insurance 83

Hunton Privacy

SEPTEMBER 1, 2020

Not disclosing, subject to specified exceptions, a consumer’s genetic data to certain entities ( e.g. , those responsible for making decisions regarding health insurance, life insurance or employment). Violations of the Act are subject to civil penalties.

Privacy 85

Privacy Insurance Marketing Information governance 85

Hunton Privacy

MARCH 24, 2022

Similar to the CPA and VCDPA, the UCPA contains exemptions for covered entities, business associates and protected health information subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), and financial institutions or personal data subject to the Gramm-Leach-Bliley Act (“GLB”).

Privacy 113

Privacy Personal data B2B Sales 113

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

Hunton Privacy

SEPTEMBER 21, 2023

However, the Act would not extend to entities covered by the Fair Credit Reporting Act, the Gramm-Leach-Bliley Act and the Health Insurance Portability and Accountability Act, as well as entities covered by the California Insurance Code.

Insurance 69

Insurance Personal data Compliance Privacy 69

Hunton Privacy

APRIL 18, 2023

The bill also contains a number of exemptions, including exceptions for financial institutions, affiliates, and data subject to Title V of the Gramm-Leach-Bliley Act, covered entities and business associates under the Health Insurance Portability and Accountability Act of 1996, nonprofit organizations and institutions of higher education.

Privacy 132

Privacy Personal data Sales Insurance 132

eSecurity Planet

DECEMBER 9, 2021

Be in-line with insurance policies. Be in-line with insurance policies. Insurance policies can also heavily influence how we respond to an incident—particularly cybersecurity. Some policies require initial contact to be made with an insurer who will deploy their own incident response team. Document contingencies.

Insurance 123

Insurance Ransomware Data breaches Cloud 123

Data Protection Report

JANUARY 30, 2023

the country in which Processing occurs e. the identity of Affiliates, Processors, or Third-Parties Personal Data is shared with f. methods by which Consumers can exercise their Data Rights request; or g. Processing purposes.

Privacy 115

Privacy Cybersecurity Personal data Insurance 115

Data Matters

DECEMBER 11, 2018

The National Association of Insurance Commissioners (NAIC) held its Fall 2018 National Meeting (Fall Meeting) in San Francisco, California, from November 15 to 18, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data. systemic risk of insurers with other parts of the financial system, notably the banking.

Insurance 68

Insurance Paper Risk Big data 68

Bill Schmarzo - Dell EMC

APRIL 4, 2018

To support this training, we created a methodology that guided the students through a digital transformation exercise. Customer Events could include planning a vacation, buying a house, or purchasing insurance. What Does “Taking a Vacation” Success Look or Feel Like (a surprisingly interesting and effective exercise).

Digital transformation 98

Digital transformation Big data Marketing Artificial Intelligence 98

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. ceding insurer could be eligible for the same reduced collateral requirements that would apply to qualifying EU reinsurers under the revised CFR Model Laws.

Insurance 68

Insurance Blockchain Big data Risk 68

Data Matters

SEPTEMBER 3, 2020

The National Association of Insurance Commissioners (NAIC) held its Summer 2020 National Meeting (Summer Meeting) from July 27 to August 14, 2020. NAIC Considers Comments to the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act . GCC Template and Instructions.

Insurance 68

Insurance Paper Artificial Intelligence Big data 68

Hunton Privacy

DECEMBER 1, 2020

The group has diversified its activities into the banking and insurance, travel agency and e-commerce sectors. Between June 8, 2018 and April 6, 2019, the CNIL received 15 complaints from individuals relating to the exercise of their data protection rights with affiliates of the Carrefour Group.

GDPR 91

GDPR Personal data Data collection Marketing 91

eSecurity Planet

OCTOBER 18, 2022

Still, just 32 percent said creating a culture of security is the key driver for their security awareness training (SA&T) program, compared to 67 percent who are more focused on regulatory compliance and 62 percent who conduct training simply to meet cyber insurance requirements.

Security 121

Security IT Cybersecurity Marketing 121

AIIM

APRIL 12, 2022

The classic example is the insurer that won’t pay for care that a doctor determines a patient needs. Insurers are about profit; doctors are about delivering the best care. With collaborative videoconferencing: Low-income patients without insurance can use the Emergency Room less often. Telemedicine.

Computer and Electronics 104

Computer and Electronics Insurance Marketing Paper 104

erwin

MAY 2, 2022

While talking to the business people about the business requirements, entities tend to be the plural nouns that they mention: insureds, beneficiaries, policies, terms, etc. Look again at Figure 7, what is the difference between an insured and a beneficiary? What is an entity? Just write them down, fill in details later.

Cloud 98

Cloud Insurance Metadata IT 98

KnowBe4

APRIL 25, 2023

link] [Head Scratcher] More Companies With Cyber Insurance Are Hit by Ransomware Than Those Without? In an interesting twist, new data hints that organizations with cyber insurance may be relying on it too much, instead of shoring up security to ensure attacks never succeed. Date/Time: Wednesday, May 3, @ 2:00 PM (ET) Save My Spot!

Insurance 75

Insurance Security awareness Phishing Ransomware 75

Data Matters

JUNE 29, 2018

In addition, the business must ensure that all individuals responsible for handling requests and compliance with AB 375 are educated about relevant aspects of the bill and how to direct consumers to exercise their rights under these sections. Businesses cannot discriminate against consumers who exercise any of their rights under AB 375.

GDPR 79

GDPR Privacy Sales Data breaches 79

Security Affairs

SEPTEMBER 15, 2022

Advise all employees to exercise caution while revealing sensitive information such as login credentials through phone or web communications. Update or draft an incident response plan, in accordance with Health Insurance Portability and Accountability Act (HIPAA) privacy and security rules.

Passwords 98

Passwords Phishing Authentication Communications 98

DLA Piper Privacy Matters

DECEMBER 3, 2021

processing personal data which is necessary for the purposes of carrying out the obligations and exercising rights of the data controller or of the data subject in the field of employment and social security and social protection law. Conduct a data mapping exercise. The form and use of consents should be considered carefully.

Personal data 105

Personal data Data breaches GDPR Compliance 105

Schneier on Security

JULY 25, 2024

Insurance blunts financial losses.) The ability to outsource software services became easy a little over a decade ago, due to ubiquitous global network connectivity, cloud and software-as-a-service business models, and an increase in industry- and government-led certifications and box-checking exercises. Regulatory penalties are minor.

Marketing 128

Marketing Insurance Access Risk 128

Hunton Privacy

SEPTEMBER 7, 2012

24867-02-11 IDI Insurance v. the allocation of responsibility for databases between health insurers and primary health care providers. In IDI Insurance , ILITA fined an insurance company for using information concerning the attachment of a client’s account in denying that client insurance.

Marketing 40

Marketing Insurance Privacy Personal data 40

Hunton Privacy

MARCH 25, 2020

Performing a task carried out in the public interest: Article 6(1)(e) of the GDPR may also provide a legal basis where data processing is necessary to perform a task carried out in the public interest or in the course of exercising official authority vested in the data controller.

Personal data 75

Personal data GDPR Risk Insurance 75

Data Matters

JANUARY 3, 2019

These include, for example, insurers, investment service companies and providers of information society services. Data Protection Officers : a list of entities that must appoint a data protection officer are set out in the LOPDGDD. This includes a right to “digital disconnection” that applies to both public and private sector workers.

GDPR 68

GDPR Personal data Privacy Insurance 68

Thales Cloud Protection & Licensing

MARCH 6, 2018

Moving to Africa, South Africa’s Protection of Personal Information (POPI) Act will be enforced later this year, and aims to ensure that organizations operating in South Africa exercise proper care when collecting, storing or sharing personal data.

Compliance 88

Compliance GDPR Encryption Data Privacy 88

IBM Big Data Hub

JULY 10, 2023

The interviewed security leaders shared that by deploying the Randori platform, their organizations were able to detect shadow IT assets, rapidly respond to vulnerabilities like Log4j and redirect time previously spent triaging exposures to more proactive security exercises.

Security 50

Security Insurance Risk IT 50

DLA Piper Privacy Matters

OCTOBER 7, 2021

Some of these steps include: Conduct a data mapping exercise. The data mapping exercise will provide an organisation with a snapshot of how its data is collected and managed. After conducting the data mapping exercise, the information will need to be systematised into a format that can be readily accessed by the organisation.

Personal data 96

Personal data Compliance Computer and Electronics IoT 96

Hunton Privacy

OCTOBER 30, 2009

The rule applies to violations of the Health Insurance Portability and Accountability Act of 2003 (“HIPAA”) that occur on or after February 18, 2009. The interim final rule is expected to be published in the Federal Register on October 30, 2009 and takes effect on November 30, 2009.

Insurance 40

Insurance Access IT Privacy 40

AIIM

JULY 24, 2018

They also assist in mitigating risks, particularly identification of appropriate cyber insurance protection and indemnification clauses in the event of a breach. Want more information?

GDPR 83

GDPR Compliance Privacy Data Privacy 83

DLA Piper Privacy Matters

MAY 5, 2020

This would cause the risk that there are insufficient functionalities or options offered to exercise the control necessary for affected individuals to avail themselves of their data protection and privacy rights. Personal data may be processed for a wide variety of purposes such as driver safety, insurance and efficient transportation.

Privacy 69

Privacy Personal data GDPR Insurance 69