2010, Encryption and Insurance - Information Management Today

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance

Insurance Cybersecurity Data breaches Financial Services

FTC Settles with Dental Practice Software Provider over Charges of Misleading Consumers with Respect to Data Encryption

Hunton Privacy

JANUARY 13, 2016

(“Schein”), agreed to settle FTC charges that accused the company of falsely advertising the level of encryption it used to protect patient data. The FTC asserted that, in 2012, the Dentrix G5 software incorporated a third party database engine that included a form of data protection that Schein advertised as “encryption.”

Encryption

Encryption Insurance Data breaches Privacy

Connecticut Insurance Department Issues Five-Day Breach Reporting Requirement

Hunton Privacy

SEPTEMBER 3, 2010

On August 18, 2010, the Connecticut Insurance Department (the “Department”) issued Bulletin IC-25 , which requires entities subject to its jurisdiction to notify the Department in writing of any “information security incident” within five calendar days after an incident is identified.

Insurance

Insurance Information Security Encryption Communications

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

OCR Issues Penalty for Noncompliance with HIPAA Privacy and Security Rules

Hunton Privacy

FEBRUARY 3, 2017

million civil monetary penalty against Children’s Medical Center of Dallas (“Children’s”) for alleged ongoing violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy and Security Rules, following two consecutive breaches of patient electronic protected health information (“ePHI”).

Privacy

Privacy Security Insurance Encryption

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

Data Matters

MARCH 12, 2019

Of particular note, the Safeguards Rule NPRM proposes to align the FTC’s requirements with those of the New York Department of Financial Services (“NYDFS”), as found in its cybersecurity regulations, and the National Association of Insurance Commissioners (“NAIC”), as found in its insurance data security model law.

Privacy

Privacy IT Information Security Insurance

Nevada and New Hampshire Data Security and Privacy Laws Take Effect

Hunton Privacy

JANUARY 6, 2010

On January 1, 2010, two important state data security and privacy laws took effect in Nevada and New Hampshire. The laws create new obligations for most companies that do business in Nevada and for health care providers and business associates in New Hampshire.

Privacy

Privacy Security Encryption Communications

IRS Will Soon Require Selfies for Online Access

Krebs on Security

JANUARY 19, 2022

was originally launched in 2010 with the goal of helping e-commerce sites validate the identities of customers who might be eligible for discounts at various retail establishments, such as veterans, teachers, students, nurses and first responders. The IRS says it will require ID.me for all logins later this summer. McLean, Va.-based

Access

Access Insurance Authentication Government

Connecticut AG Files First HITECH Act Suit

Hunton Privacy

JANUARY 15, 2010

The case marks the first action by a state attorney general under the Health Information Technology for Economic and Clinical Health (“HITECH”) Act to enforce provisions of the Health Insurance Portability and Accountability Act (“HIPAA”). On January 13, 2010, the Attorney General filed a motion for a preliminary injunction.

Insurance

Insurance Privacy Security Encryption

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

HL Chronicle of Data Protection

MARCH 14, 2019

The Dodd-Frank Act, enacted in 2010, transferred rulemaking authority under the GLBA’s privacy provisions to the CFPB for most non-bank financial institutions. Specific information security measures. The proposed Rule is much more detailed in terms of security measures that FIs must implement.

Privacy

Privacy Risk Cybersecurity Information Security

FTC and HHS Issue Final Breach Notification Rules

Hunton Privacy

AUGUST 28, 2009

The FTC Final Rule does not apply to covered entities or business associates as defined under regulations promulgated pursuant to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). Full compliance is required by February 22, 2010.

Insurance

Insurance Compliance Encryption Information Security

Zero Trust: Can It Be Implemented Outside the Cloud?

eSecurity Planet

MAY 11, 2023

The concept of zero trust has been around since 2010, when Forrester Research analyst John Kindervag created the zero trust security model. I am very surprised that the cyber insurance industry has not required zero trust architecture already, but perhaps the $1.4 Networks need to be segmented and authenticated.

Cloud

Cloud IT Insurance Authentication

FTC Proposes Changes to GLB Privacy and Safeguards Rules

Hunton Privacy

MARCH 8, 2019

Notably, the proposed amendments would require covered financial institutions to encrypt all customer data held or transmitted by the institution both in transit over external networks and at rest. The proposed changes would add more detailed requirements on how financial institutions must protect customer information.

Privacy

Privacy Insurance Financial Services Encryption

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

The biggest changes since our debates on the Data Protection Act 1998, or even the early stages of the GDPR, which I was involved in as a Minister at the MoJ from 2010 to 2013, is that the threat to civil liberties and personal freedoms now comes not only from agencies of the state but from corporate power as well.

GDPR

GDPR Personal data Government IT

How $100M in Jobless Claims Went to Inmates

Krebs on Security

FEBRUARY 25, 2021

Labor Department’s inspector general said this week that roughly $100 million in fraudulent unemployment insurance claims were paid in 2020 to criminals who are already in jail. We encrypt all that stuff down to the file level with keys that rotate and expire every 24 hours. based ID.me To screen out fraudsters, ID.me

Authentication

Authentication Insurance Personal data Encryption

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Beyond Identity Identity management 2020 Private Expel Managed security service 2016 Private Tigera Zero trust for K8s 2016 Private Intrinsic Application security 2016 Acquired: VMware HackerOne Penetration testing 2015 Private Virtru Data encryption 2014 Private Cloudflare Cloud infrastructure 2010 NYSE: NET.

Cybersecurity

Cybersecurity Cloud Marketing Security

Information Management Today

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

FTC Settles with Dental Practice Software Provider over Charges of Misleading Consumers with Respect to Data Encryption

Webinars

Trending Sources

Connecticut Insurance Department Issues Five-Day Breach Reporting Requirement

Webinars

OCR Issues Penalty for Noncompliance with HIPAA Privacy and Security Rules

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

Nevada and New Hampshire Data Security and Privacy Laws Take Effect

IRS Will Soon Require Selfies for Online Access

Connecticut AG Files First HITECH Act Suit

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

FTC and HHS Issue Final Breach Notification Rules

Zero Trust: Can It Be Implemented Outside the Cloud?

FTC Proposes Changes to GLB Privacy and Safeguards Rules

The debate on the Data Protection Bill in the House of Lords

How $100M in Jobless Claims Went to Inmates

Top VC Firms in Cybersecurity of 2022

Stay Connected