Data Matters

FEBRUARY 20, 2019

On January 18, 2019, the New York State Department of Financial Services (NYDFS) issued Circular Letter 2019-1 (the Circular Letter), addressing insurers’ use of external consumer data and information sources in underwriting for life insurance. Unlawful Discrimination.

Insurance 68

Insurance Financial Services Compliance Retail 68

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

IBM Big Data Hub

MARCH 20, 2024

For highly regulated industries, these challenges take on an entirely new level of expectation as they navigate evolving regulatory landscape and manage requirements for privacy, resiliency, cybersecurity, data sovereignty and more. Similarly, in the U.S.

Cloud 81

Cloud Financial Services Risk Business Services 81

Reltio

JUNE 9, 2022

The insurance industry is facing unprecedented disruption. Insurance carriers have been called to transform customer experience, business offerings, and operations. As an insurer, your current business models are being challenged by new thinking, new competitors, and new ways of working.

Digital transformation 52

Digital transformation Insurance MDM Customer Experience 52

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Hunton Privacy

NOVEMBER 8, 2023

On November 1, 2023, New York Governor Hochul announced that the New York State Department of Financial Services (“NYDFS”) amended its Cybersecurity Regulation applicable to covered financial institutions. For certain other requirements, regulated entities will have between one and two years to reach compliance.

Cybersecurity 72

Cybersecurity IT Compliance Financial Services 72

Krebs on Security

JUNE 18, 2021

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. This week, the U.S. billion last year.

Insurance 280

Insurance Risk Financial Services Mining 280

AIIM

OCTOBER 15, 2018

In a recent AIIM webinar, Craig Le Clair, Forrester VP and Principle Analyst, and Florian Vondal, Allianz Solution Architect, took a closer look at the “esign of the times” and what must be considered when attempting to accelerate e-signature adoption enterprise-wide and meet global compliance. Millennials or Generation X).

Compliance 109

Compliance Insurance Digital transformation Authentication 109

The Last Watchdog

AUGUST 22, 2019

On one hand, threat actors have already begun exploiting fresh attack vectors, borne of this rising complexity, and, on the other, government authorities and industry standards bodies are insisting on compliance with increasingly cumbersome data-handling security rules. it’s almost a perfect storm.

Digital transformation 147

Digital transformation Compliance Risk Security 147

erwin

APRIL 11, 2019

Keeping up with new data protection regulations can be difficult, and the latest – the General Data Protection Regulation (GDPR) – isn’t the only new data protection regulation organizations should be aware of. A number of high-profile data breaches and scandals have increased public awareness of the issue.

GDPR 100

GDPR e-Discovery Compliance Metadata 100

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Compliance management.

Compliance 57

Compliance Risk Government Retail 57

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

Thales Cloud Protection & Licensing

APRIL 1, 2021

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption. Today’s remote working environment relies heavily on the collaborative sharing of information, challenging organizations to maintain the security of confidential data and regulatory compliance while driving employee productivity.

Encryption 79

Encryption Compliance Cloud GDPR 79

The Last Watchdog

APRIL 3, 2019

This is, in large part, because the complexity of business networks continues to escalate at a time when compliance mandates are intensifying. I had the chance at RSA 2019 to visit with Mike Kiser, global strategist at SailPoint , an Austin, TX-based supplier of IGA services to discuss this. Compliance matters. Users re-defined.

Digital transformation 140

Digital transformation Insurance Compliance Healthcare 140

Data Protection Report

JUNE 2, 2021

On May 13, 2021, the New York Department of Financial Services (NYDFS) announced a $1.8 million settlement with two related insurance companies, relating to violations of two different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2019. NYDFS Cybersecurity Regulation.

Cybersecurity 71

Cybersecurity Insurance Financial Services Phishing 71

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity 88

Cybersecurity Privacy Insurance Risk 88

Data Protection Report

FEBRUARY 8, 2022

The latter is the 2019 data security law known as the Stop Hacks and Improve Electronic Data Security (SHIELD) Act. EyeMed engaged a forensic investigator, which was unable to determine whether any exfiltration of personal data had occurred, due in part to a lack of log data. In total, information for approximately 2.1

Passwords 98

Passwords Financial Services Authentication Insurance 98

IT Governance

FEBRUARY 21, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. TB of ASA Electronics data to its leak site The ALPHV/BlackCat ransomware gang is attempting to extort a ransom from ASA Electronics for 2.7 Data breached: 2.7

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

DLA Piper Privacy Matters

FEBRUARY 28, 2022

The Data Protection Commission (DPC) has published its 2021 Annual Report , highlighting key observations, emerging guidance, and large-scale inquiries and decisions of 2021. The DPC received a total of 6,549 valid notifications of personal data breaches in 2021. In November, the DPC launched the revised Breach Notification Webform.

Financial Services 97

Financial Services Data breaches Personal data Compliance 97

The Last Watchdog

JANUARY 30, 2019

Late last year, Atrium Health disclosed it lost sensitive data for some 2.65 The culprit: lax practices of a third-party data and analytics contractor. One might assume top-tier financial services firms and healthcare vendors would have solved third-party cyber exposures by now. Uphill battle.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act).

Cybersecurity 104

Cybersecurity Financial Services Data breaches Insurance 104

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. The SEC’s Order provides critical insight for public companies’ disclosure regimes.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. Finally, the regulation includes an annual certification of compliance, to be filed with NYDFS. NYDFS Cybersecurity Regulation.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

OpenText Information Management

DECEMBER 4, 2019

Last year, the number of personal records exposed by cyber attacks on the financial services industry was an incredible 446,575,334 – more than triple from the year before. The financial and reputational damage from these data breaches can be immense.

Financial Services 52

Financial Services Data breaches Security Personal data 52

ARMA International

APRIL 18, 2022

It is essential that your organization’s records retention schedule is compliant with the data protection requirements in the jurisdictions where your organization operates. Introduction to Data Protection Laws. Personal data protection requirements may be issued by federal, state (provincial), or local governments.

Personal data 100

Personal data GDPR Privacy Records Management 100

Data Matters

APRIL 20, 2021

This development indicates that sponsors and fiduciaries may soon be subject to focused scrutiny over their cybersecurity practices in DOL investigations and adds to the multiple existing sources of cybersecurity legal risk in the wake of data breaches or insufficient cybersecurity controls.

Cybersecurity 68

Cybersecurity Insurance Risk Compliance 68

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. Nevertheless, EyeMed certified its compliance with the Cybersecurity Regulation annually, from 2018-2021.

Cybersecurity 52

Cybersecurity Personal data Risk Financial Services 52

Info Source

JULY 6, 2023

They acquire, classify, and convert unstructured and semi-structured information into enhanced usable data for use in business transactions, analytics, records management, discovery, and compliance applications. For example, if your experience as an end customer in an interaction with your bank, insurance carrier, car dealer etc.

Customer Experience 52

Customer Experience Communications Financial Services Insurance 52

Data Protection Report

NOVEMBER 16, 2022

BIPA exempts certain types of entities, namely, organizations that are governed by certain federal laws including the X-Ray Retention Act, the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), and the Gramm-Leach-Bliley Act (“GLBA”). Who is covered by BIPA? 740 ILCS 14/25(b)-(c). DePaul University , Case No.

Financial Services 98

Financial Services Privacy Compliance Insurance 98

Collibra

MARCH 11, 2021

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. Focus on the operating model.

Government 59

Government Communications Insurance Customer Experience 59

The Last Watchdog

MARCH 1, 2019

Enterprises have dumped small fortunes into stocking their SOCs (security operations centers) with the best firewalls, anti-malware suites, intrusion detection, data loss prevention and sandbox detonators money can buy. Now toss in the fact that digital transformation is redoubling software development and data handling complexities.

Digital transformation 193

Digital transformation Marketing Analytics Risk 193

eSecurity Planet

FEBRUARY 11, 2022

The simplest example may be insurance. Life, health, auto, and other insurance are all designed to help a person protect against losses. Maintaining Regulatory Compliance. Cybersecurity should follow a layered approach, with additional protections for the most important assets, such as corporate and customer data.

Risk 127

Risk Cybersecurity Encryption Access 127

Data Matters

AUGUST 5, 2019

On July 25, 2019, Governor Cuomo signed the two bills into law, one which amended the state’s data breach notification law, and another that created additional obligations for data breaches at credit reporting agencies. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

Collibra

APRIL 11, 2022

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. Identify data domains.

Government 52

Government Communications Insurance Customer Experience 52

Data Matters

SEPTEMBER 24, 2019

Today, more than 120 countries have privacy and data protection laws or regulations in place. Many of the new or modernized laws tend to be based on comprehensive legislation, rather than sectoral rules, as data needs to move across industry groups and borders. An Overview of the BDPA.

Personal data 68

Personal data GDPR Data Privacy Privacy 68

IBM Big Data Hub

FEBRUARY 14, 2024

Promote cross- and up-selling Recommendation engines use consumer behavior data and AI algorithms to help discover data trends to be used in the development of more effective up-selling and cross-selling strategies, resulting in more useful add-on recommendations for customers during checkout for online retailers.

Artificial Intelligence 89

Artificial Intelligence Retail Unstructured data Insurance 89