Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance 68

Insurance Paper Risk Analytics 68

Data Protection Report

JUNE 2, 2021

On May 13, 2021, the New York Department of Financial Services (NYDFS) announced a $1.8 million settlement with two related insurance companies, relating to violations of two different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2019. Affiliate #1 notified NYDFS on November 25, 2019.

Cybersecurity 71

Cybersecurity Insurance Financial Services Phishing 71

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act).

Cybersecurity 104

Cybersecurity Financial Services Data breaches Insurance 104

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. According to the consent order, the matter began when NSC reported a cybersecurity event to NYDFS on October 23, 2019. NYDFS Cybersecurity Regulation.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike. Pierluigi Paganini.

Access 89

Access Financial Services Retail Insurance 89

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Third-party service provider risk management program.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops.

Security 111

Security Digital transformation Financial Services Risk 111

The Last Watchdog

AUGUST 22, 2019

A core security challenge confronts just about every company today. While the benefits of DX are highly-touted , this shift has also spawned a whole new tier of unprecedented privacy and security challenges. The cloud is kind of dragging this movement along and DevOps and security are center stage, at the moment.”

Digital transformation 120

Digital transformation Compliance Risk Security 120

Data Protection Report

FEBRUARY 8, 2022

The latter is the 2019 data security law known as the Stop Hacks and Improve Electronic Data Security (SHIELD) Act. When you enter personal information on our Site, we encrypt transmissions involving such information using secure protocols.” In total, information for approximately 2.1 Background. SHIELD Act.

Passwords 98

Passwords Financial Services Authentication Insurance 98

The Last Watchdog

APRIL 3, 2019

I had the chance at RSA 2019 to visit with Mike Kiser, global strategist at SailPoint , an Austin, TX-based supplier of IGA services to discuss this. The key security lesson is that an identity gets assigned to each and every RPA, creating fresh attack vectors. As complexity has intensified, so have compliance challenges.

Digital transformation 108

Digital transformation Insurance Compliance Healthcare 108

AIIM

OCTOBER 15, 2018

Hence the concept of electronic identification and trust services ( eIDAS ) as defined in EU regulation 910/2014 is centered around trust and security and certificate-based signing. Allianz – a global financial services and insurance company – is one of those organizations which had to rethink their approach on e-signatures.

Compliance 109

Compliance Insurance Digital transformation Authentication 109

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 120

Risk Financial Services Insurance Cybersecurity 120

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity 88

Cybersecurity Privacy Insurance Risk 88

Info Source

JULY 6, 2023

For example, if your experience as an end customer in an interaction with your bank, insurance carrier, car dealer etc. t starts with the prospect, who has researched alternatives based on her/his specific needs selecting a financial services provider and type of loan and submitting a request. as quickly as possible.

Customer Experience 52

Customer Experience Communications Financial Services Insurance 52

Hunton Privacy

JULY 24, 2020

On Wednesday, July 22, the New York Department of Financial Services (the “NYDFS”) announced that it had filed administrative charges against First American Title Insurance Co. under the NYDFS Cybersecurity Regulation , marking the agency’s first enforcement action since the rules went into effect in March 2017.

Cybersecurity 85

Cybersecurity Risk Financial Services Insurance 85

KnowBe4

MARCH 28, 2023

Security awareness training still has a place to play here." Email and other elements of software infrastructure offer built-in fundamental security that largely guarantees we are not in danger until we ourselves take action," Tyson writes. Is the email enticing you to click on a link?' I'm being asked to do something here.'"

Phishing 92

Phishing Security awareness Insurance Cybersecurity 92

Krebs on Security

OCTOBER 24, 2019

1, 2019 to Aug. The Times Union reports that Mann and his company are now being sued by Pioneer Bank and a large insurance company over a $42 million loan it gave to Mann and his companies just a month before his payroll business closed up shop. But on Oct.

Communications 162

Communications Financial Services Insurance Risk 162

The Last Watchdog

MARCH 13, 2019

This gives you an idea of the steady flow of weaponized email attacks against companies of all sizes and in all sectors, with certain verticals, namely financial services, healthcare companies and tech firms bearing the brunt. The key takeaways: Productivity vs. security. So, the challenge becomes productivity versus security.”.

Systems administration 100

Systems administration Financial Services Insurance Security 100

Data Matters

OCTOBER 8, 2020

Treasury’s Financial Crimes Enforcement Network (FinCEN), OFAC is sending a clear signal that making ransomware payments with a sanctions nexus threatens U.S. national security interests and that third-party service providers that facilitate ransomware payments on behalf of a victim must consider and ensure compliance with OFAC regulations.

Ransomware 68

Ransomware Compliance Risk Government 68

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. Raising awareness about ransomware is a baseline security measure. As training sessions have little influence over staff for every potential attack, it makes added security more imperative.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

ARMA International

AUGUST 2, 2019

On July 22, 2019, the Federal Trade Commission (FTC) announced that it had reached a proposed settlement. According to the FTC’s press release, the data breach included “names and dates of birth, Social Security numbers, physical addresses, and other personal information that could lead to identity theft and fraud.”

Cloud 41

Cloud Data breaches Encryption Access 41

Data Matters

AUGUST 5, 2019

On July 25, 2019, Governor Cuomo signed the two bills into law, one which amended the state’s data breach notification law, and another that created additional obligations for data breaches at credit reporting agencies. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

Data Matters

FEBRUARY 25, 2021

This follows the FCA’s announcement in its 2020-21 business plan that payment services were one of its main supervisory priorities 1 and its temporary guidance of July 9, 2020, on prudential risk management and safeguarding in light of the COVID-19 pandemic ( Temporary COVID Guidance ). its Perimeter Guidance Manual (PERG).

Authentication 68

Authentication Paper Risk Insurance 68

DLA Piper Privacy Matters

APRIL 2, 2020

In response to the coronavirus disease 2019 (COVID-19) pandemic, organizations around the world have moved to remote work platforms in a span of a few short weeks. Various laws and best practices speak of the need to train network users on the latest security best practices. Enabling “safe searching” browser security features can help.

Cybersecurity 52

Cybersecurity Phishing Authentication Access 52

DLA Piper Privacy Matters

JULY 30, 2019

Effective cybersecurity requires organizations to move beyond perimeter defense of their own network to protecting sensitive data in the hands of service providers. From a security and legal perspective, service provider cybersecurity requires significant attention and coordination by all parties both before and after hitting the breach.

Data breaches 45

Data breaches Cybersecurity Financial Services Risk 45

Data Matters

SEPTEMBER 24, 2019

In Barbados, the public consultation on a draft privacy bill has already taken place and an amended bill has been presented to a Joint Select Committee of both Houses of the Barbados Parliament on May 31, 2019. The BDPA was passed by the BDPA on July 24, 2019 and now awaits the Governor-General’s signature. An Overview of the BDPA.

Personal data 68

Personal data GDPR Data Privacy Privacy 68

Data Matters

DECEMBER 28, 2020

The National Association of Insurance Commissioners (NAIC) held its Fall 2020 National Meeting (Fall Meeting) December 3-9, 2020. NAIC Adopts the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act. Insurance groups will be exempt from filing a GCC if. groups to non-U.S.

Insurance 68

Insurance Paper Risk Analytics 68

Data Matters

JANUARY 2, 2018

and perhaps even on the model clauses, although ultimate decisions on the merits may easily reach into 2019 or beyond. A number of countries are suggesting data localization as a way to secure their systems, which would mean significant changes for companies operating there. The Relentless Rise of Big Data and AI.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Krebs on Security

SEPTEMBER 27, 2019

1, 2019 to Aug. For more than a decade, MyPayrollHR worked with California-based Cachet Financial Services to process payroll deposits for MyPayrollHR client employees. NatPay said its insurance should help cover the losses it incurred when MyPayrollHR’s banks froze the company’s accounts.

Financial Services 250

Financial Services Insurance Cloud IT 250

eSecurity Planet

SEPTEMBER 16, 2022

In its 2021 Threat Force Intelligence Index , IBM reported that manufacturing and financial services were the two industries most at risk for attack, making up 23.2% According to FTC findings in 2019, government impostor fraud was the most-reported type of fraud. Take a look at Top Secure Email Gateway Solutions for 2022.

Analytics 113

Analytics Risk Authentication Financial Services 113

The Last Watchdog

MAY 24, 2021

Akamai, which happens to be the Hawaiian word for “smart,” recently released its annual State of the Internet security report. billion hitting financial services organizations — an increase of more than 45 percent year-over-year in that sector. billion web attacks globally; 736 million in the financial services sector.

Financial Services 139

Financial Services Passwords Data breaches Authentication 139

HL Chronicle of Data Protection

SEPTEMBER 12, 2018

The revised CCPA clarifies that “medical information” subject to the Confidentiality of Medical Information Act (CMIA) and “protected health information” collected by a “covered entity” or “business associate” established pursuant to the federal Health Insurance Portability and Accountability Act of 1996 (HIPAA) are exempt from the statute.

Privacy 40

Privacy Compliance GDPR Data breaches 40

Reltio

APRIL 25, 2019

Blake Morgan , Customer Experience Futurist, makes her point in the Forbes article Five Trends Shaping the Future of Customer Experience In 2019. How do you ensure security and privacy while personalizing the customer experience? Do you have fail-safe processes to guarantee security of customer data?

Customer Experience 75

Customer Experience Digital transformation B2B B2C 75

Thales Cloud Protection & Licensing

DECEMBER 23, 2019

According to the 2019 Thales Data Threat Report-India Edition , digital transformation is well underway in India, with 41% of Indian respondents saying they are either aggressively disrupting the markets they participate in or embedding digital capabilities that enable greater organizational agility. Complexity is a Barrier to Data Security.

Digital transformation 15

Digital transformation Cloud Encryption Data Privacy 15

Hunton Privacy

MARCH 8, 2019

On March 5, 2019, the Federal Trade Commission announced that it is seeking comment on proposed changes to the FTC’s Safeguards Rule and Privacy Rule under the Gramm-Leach-Bliley Act (“GLB”). The proposed changes would add more detailed requirements on how financial institutions must protect customer information.

Privacy 55

Privacy Insurance Financial Services Encryption 55