Skip to Content

NAIC Insurance Data Security Model Law Emerges
March 19, 2018

Josephine Cicchetti, co-chair of Carlton Fields Cybersecurity and Privacy Task Force, wrote the ABA TIPS Corporate Counsel Law article, “NAIC Insurance Data Security Model Law Emerges.” The National Association of Insurance Commissioners (NAIC) Executive Committee and Plenary approved the sixth iteration of the model law on October 24, 2017. It is now available for consideration and adoption by the states.

The model law, which applies to individuals and non-government entities licensed by a state’s insurance law, defines the purpose of creating data security standards, as well as standards related to notifying an insurance commissioner if there is a cybersecurity event. Other features of the model law include a comprehensive, written information security program, oversight of the board of directors and third-party service providers, annual certification, and confidentiality requirements. And, the model law tracks the State of New York’s Cybersecurity Regulation. 

Read the article.
Related Practices
Cybersecurity and Privacy Financial Services Regulatory

Disclaimer

The information on this website is presented as a service for our clients and Internet users and is not intended to be legal advice, nor should you consider it as such. Although we welcome your inquiries, please keep in mind that merely contacting us will not establish an attorney-client relationship between us. Consequently, you should not convey any confidential information to us until a formal attorney-client relationship has been established. Please remember that electronic correspondence on the internet is not secure and that you should not include sensitive or confidential information in messages. With that in mind, we look forward to hearing from you.