Videocast: Asset management regulation in 2020 videocast series – The annuity regulatory landscape
The Intersection of Big Data and Insurance Regulation
InsurTech and the Changing Distribution Model
The National Association of Insurance Commissioners’ (NAIC) Privacy Protections (H) Working Group (the “Working Group”) has continued its charge to draft a new or revised model law aimed at standardizing privacy protections...more
On May 15, 2024, the Privacy Protections (H) Working Group of the National Association of Insurance Commissioners (“NAIC”) held its first meeting since the Spring National Meeting in March. The working group seeks public...more
For over 100 years, the National Association of Insurance Commissioners (NAIC) has been developing model legislation to encourage uniformity among states for the regulation of insurance products. The NAIC model laws and...more
In July, the Innovation, Cybersecurity and Technology Committee of the National Association of Insurance Commissioners (NAIC) released an exposure draft of its model bulletin titled “Use of Algorithms, Predictive Models, and...more
The first half of 2023 saw a flurry of activity in the privacy and data security spaces. We outline below some of the key developments of interest to the insurance industry....more
On February 1, 2023, the NAIC Privacy Protections Working Group (PPWG) released a draft of Model Law 674 Insurance Consumer Privacy Protection Model Law (Model 674 or Model). Proposed Model 674 is intended to replace Model...more
The first half of 2022 brought plenty of activity in the data privacy and cybersecurity space, much of which is applicable to or of interest to the insurance industry. We outline some of this activity below. Revisions to...more
Vermont Governor Scott signed the Vermont Insurance Data Security Law (available here) (the “VIDSL”), becoming the 22nd state to adopt a cybersecurity statute based on the National Association of Insurance Commissioners...more
Over the last several months, a minority of states amended their data breach notification statutes or enacted sector-specific breach notification requirements. ...more
The NAIC Data Security Model Law (Model 668) continues its journey through the various state legislatures. Whether all 50 states meet the U.S. Treasury-recommended 2022 deadline for adoption of uniform data security...more
The National Association of Insurance Commissioner (NAIC)’s model data security law (“Model Law”) was recently adopted by Maine and North Dakota. This addition brings the total number to states that have joined the NAIC...more
Two more state governors, those of Maine and North Dakota, have signed bills into law that adopt the National Association of Insurance Commissioners (NAIC) data security model law (Model Law). Maine and North Dakota join...more
As insurers continue to grapple with a number of pressing issues — COVID-19 lockdown, an effective California Consumer Privacy Act, and the pending California Privacy Rights Act — many may have lost track of states’ actions...more
In 2019, many of us were so consumed by preparations for the January 1, 2020, effectiveness of the CCPA that we may have lost track of activities concerning state enactment of the NAIC Insurance Data Security Model Law. To...more
States continue to implement insurance-specific cyber and data security regulations, drawing on either the National Association of Insurance Commissioners Insurance Data Security Model Law (“Model Law”) or the New York...more
Since July 1, 2019, Delaware, New Hampshire and Connecticut have enacted laws imposing new cybersecurity requirements on insurers. These laws follow similar statutes already operating in at least six other states: Alabama,...more
In this month's edition of our Privacy & Cybersecurity Update, we examine the European Parliament's report on whether and how the use of blockchain technology can comply with the General Data Protection Regulation, as well as...more
New Hampshire recently passed its Insurance Data Security Law based on the National Association of Insurance Commissioner’s (NAIC) Insurance Data Security Model Law. The law will go into effect January 1, 2020....more
On August 2, 2019, New Hampshire became the most recent of many states that adopted an Insurance Data Security Law (Senate Bill 194-FN) modeled after the National Association of Insurance Commissioners’ (NAIC) Insurance Data...more
Delaware (July 31, 2019) and New Hampshire (August 2, 2019) have become the latest states to add to the insurance cybersecurity landscape by enacting information security laws. These laws come on the heels of Connecticut’s...more
Most businesses in the insurance industry have one thing in common – they collect and maintain significant amounts of sensitive, nonpublic information including personal information. Not surprisingly, insurance-related...more
To date, six states from Michigan to Alabama have adopted versions of the National Association of Insurance Commissioner’s model insurance data security law (the “NAIC model”). The NAIC model generally requires entities...more
In March 2017, New York’s path breaking cybersecurity law for financial services companies went into effect. Influenced by the New York law (“New York Part 500”), the National Association of Insurance Commissioners adopted an...more
If you are an insurance provider, you are already awash in regulatory quagmires. Now, you can add one more. In fact, if you don’t have a comprehensive data privacy and security plan in place, then you may not be in compliance...more
Legislative and regulatory activity continues apace, with four states making changes to their data privacy and cybersecurity legislation in the past month alone. West Virginia and Mississippi enacted new legislation while...more