Compliance, Examples, Exercises and Insurance - Information Management Today

New York Department of Financial Services Issues Guidance Regarding Life Insurers’ Use of External Consumer Data in Underwriting

Data Matters

FEBRUARY 20, 2019

On January 18, 2019, the New York State Department of Financial Services (NYDFS) issued Circular Letter 2019-1 (the Circular Letter), addressing insurers’ use of external consumer data and information sources in underwriting for life insurance. Unlawful Discrimination.

Insurance

Insurance Financial Services Compliance Retail

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

Three Critical Steps for GDPR Compliance. GDPR Compliance Starts with Data Discovery. There are a number of areas where GDPR strengthens compliance obligations and imposes additional legal liabilities. This is the 11th post in a series on privacy by Andrew Pery. Data Privacy and Open Data: Secondary Uses under GDPR.

GDPR

GDPR Compliance Privacy Data Privacy

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance

Insurance Cybersecurity Data breaches Financial Services

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Understanding HIPAA: A Guide to Avoiding Common Violations

Armstrong Archives

AUGUST 25, 2023

The Health Insurance Portability and Accountability Act (HIPAA) ensures individuals’ health data protection and privacy. This includes insurance companies, nurses, and doctors. In this article, we’ll talk more about the HIPAA, the importance of compliance, some common HIPAA violations, and more!

Computer and Electronics

Computer and Electronics Insurance Compliance Risk

UAE: Federal level data protection law enacted

DLA Piper Privacy Matters

DECEMBER 3, 2021

International businesses with global privacy compliance programs should seek to expand those to cover the UAE and achieve some synergies. While the PDPL will not be effective immediately, we recommend that businesses take compliance steps as soon as possible. The form and use of consents should be considered carefully.

Personal data

Personal data Data breaches GDPR Compliance

Saudi Arabia’s New Data Protection Law – What you need to know

DLA Piper Privacy Matters

OCTOBER 7, 2021

For example, an unlawful transfer of personal data outside of KSA can result in a criminal conviction and imprisonment. Ongoing compliance with existing laws and NDMO Personal Data Protection Interim Regulations. Some of these steps include: Conduct a data mapping exercise. Credit data access. What can you do now?

Personal data

Personal data Compliance Computer and Electronics IoT

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

Data Matters

APRIL 10, 2020

Businesses will not need to dramatically change compliance plans as the proposed revised regulations seek to refine requirements in prior drafts rather than introduce any wholesale changes to the regulatory framework. For more resources and information on CCPA compliance planning, visit Sidley’s CCPA Monitor.

Privacy

Privacy Sales Insurance Compliance

How to improve your cyber resilience

IT Governance

FEBRUARY 15, 2019

It’s not helpful to list ‘hacking’ as a risk, for example, because that could include anything from phishing scams to exploited databases. For example, staff awareness training is a requirement of almost all security frameworks because it helps reduce the likelihood of a variety of risks. Managing costs.

Risk

Risk GDPR Communications Insurance

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

For many readers of this post, a huge amount of work will have been done in recent months in building up to compliance with the new regime. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR. This includes EU-based companies that may work with US-based service providers, for example.

GDPR

GDPR Personal data Compliance Data breaches

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

For example, if geolocation data shows that a consumer regularly visits a particular place of business, it may be inferred that consumer is a patron of such a business. Businesses cannot discriminate against consumers who exercise any of their rights under AB 375. A consumer may request this information twice in a 12-month period.

GDPR

GDPR Privacy Sales Data breaches

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

The GDPR was designed to harmonize data protection laws across Europe and to protect EU residents’ data privacy rights; and, its coming triggered significant privacy and data protection compliance activities amongst organizations doing business in the EU and working with the personal data of EU residents. Non-Compliance.

Personal data

Personal data GDPR Data Privacy Privacy

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

For example, if geolocation data shows that a consumer regularly visits a particular place of business, it may be inferred that consumer is a patron of such a business. Businesses cannot discriminate against consumers who exercise any of their rights under AB 375. A consumer may request this information twice in a 12-month period.

GDPR

GDPR Privacy Sales Data breaches

Cybersecurity: Managing Risks With Third Party Companies

Cyber Info Veritas

JULY 19, 2018

Compliance risks – this means failure to comply with the regulations, procedures, internal policies, rules, laws or business standards. Determine the degree of impact were the threat to be exercised e.g. low, medium or high Look at the different categories of information to adequately analyze the control environment.

Risk

Risk Cybersecurity Compliance Data breaches

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

Certain sectors, such as banking, financial services, health, and insurance have their own data protection and privacy requirements. A data subject request is an action by an individual to exercise that right, and the organization has an obligation to respond to that request 10 11. resumes, personnel files, video/call recordings).

Personal data

Personal data GDPR Privacy Records Management

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

Preparing for GDPR – Is the Way You Process Information Compliant with Data Protection Laws?

Managing Your Information

MAY 30, 2017

As the presentation went on, however, it became clear that nobody seemed to have considered compliance with data protection legislation. However, the summary below covers terms that, if you are responsible for data protection compliance, you will need to become familiar with. Ensuring Your Processing is Lawful.

GDPR

GDPR Compliance Personal data Access

#ModernDataMasters: Mike Evans, Chief Technology Officer

Reltio

MARCH 19, 2019

“If you are not tying what you are doing, in any kind of data initiative, to a business vision and some tangible outcomes that a business is trying to achieve, then MDM can become just a complex academic exercise.”. For example, you can’t directly transfer to a new person the value of what you learn when a project hasn’t gone well. “

MDM

MDM Retail IT Government

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

This page will enable consumers to exercise the right to opt-out of the sale of their personal information. Businesses will be prohibited from discriminating against any consumer for exercising their rights under the new law. Anti-Discrimination Provisions. As can be seen in SB-1121, amendments are only just beginning to trickle in.

Privacy

Privacy Sales Compliance Cybersecurity

Preparing for GDPR – Is the Way You Process Information Compliant with Data Protection Laws?

Managing Your Information

MAY 30, 2017

As the presentation went on, however, it became clear that nobody seemed to have considered compliance with data protection legislation. However, the summary below covers terms that, if you are responsible for data protection compliance, you will need to become familiar with. Ensuring Your Processing is Lawful.

GDPR

GDPR Compliance Personal data Access

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

Data Matters

OCTOBER 22, 2019

In such circumstances, however, before selling the information in question, a business must either give the consumer an opportunity to opt out or obtain a “signed attestation” from the entity that collected the personal information stating that it provided notice at the point of collection to the consumer and include an example of the notice.

Privacy

Privacy Sales Paper Compliance

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

This page will enable consumers to exercise the right to opt-out of the sale of their personal information. Businesses will be prohibited from discriminating against any consumer for exercising their rights under the new law. Anti-Discrimination Provisions. As can be seen in SB-1121, amendments are only just beginning to trickle in.

Privacy

Privacy Sales Education Compliance

Regulatory Update: NAIC Spring 2019 National Meeting

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. ceding insurer could be eligible for the same reduced collateral requirements that would apply to qualifying EU reinsurers under the revised CFR Model Laws.

Insurance

Insurance Blockchain Big data Risk

#ModernDataMasters: Henrik Liliendahl, Chairman & CTO, Product Data Lake

Reltio

JUNE 20, 2019

Could you also please share an example of where things have not gone so well and what you learned from the experience? As far as specific examples go, I could share a few stories but it’s probably better if I don’t! I like to walk and bicycle – it is good exercise but you can also think while you do these things.

MDM

MDM Manufacturing Computer and Electronics Digital transformation

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Examples of services security include: AD security : Adds layers of security to Active Directory to eliminate unneeded access or permission levels, detect unauthorized changes, and block other attacks on AD. behind the proxy. Services Security Services security applies to specialized controls for the system services within the network.

Security

Security Cloud Cybersecurity Risk

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

Where the Information Commissioner gives notices to data controllers, she can now secure compliance, with the power to issue substantial administrative penalties of up to 4% of global turnover. Withdrawal from the EU means that we stand to lose the institutional platform from which we have exercised that influence.

GDPR

GDPR Personal data Government IT

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Data Protection Report

OCTOBER 11, 2019

For example, “Household” is defined as “a person or group of people occupying a single dwelling” (999.301(h)). Some of these rules are quite prescriptive and may not match with what businesses have planned to do as part of their current CCPA compliance program. The rules are not final. 999.305(d)). For example:ser.

Sales

Sales Retail Privacy Access

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

Addressing a key compliance issue for businesses, the proposed regulations provide a detailed set of rules on how businesses should incorporate data security concerns into their right to know responses. free vs. paid streaming), to quantify the value of consumers’ information and disclose the value and methods used to calculate it.

Sales

Sales Privacy Passwords Compliance

The Orion blockchain database: Empowering multi-party data governance

IBM Big Data Hub

AUGUST 7, 2023

For example, organizations typically rely on trust in the cloud provider, expecting them to refrain from intentionally blocking client access to services, despite having the capability to do so. Furthermore, Orion can be used for maintaining the authenticity and integrity of evidence collected through insurance claims processes.

Blockchain

Blockchain Government Authentication Manufacturing

#ModernDataMasters: Bob More, SVP Global Field Operations

Reltio

JULY 10, 2019

I’ve seen it most successful when it’s taken in the context of a larger overall initiative, for example a digital transformation or implementation of a new system or process. The solely IT-driven ones are more likely to be a plumbing exercise – more about pulling data together and feeding it somewhere else.

MDM

MDM Sales Digital transformation Cloud

Sustainable Software Requires Deep Agility & Expertise

Role Model Software

OCTOBER 24, 2019

Perhaps they have read about agile processes and think it will help them avoid catastrophe, but try to exercise it with unproven talent. For example, if you have had an introduction to HTML or programming, gotten a degree in IT or Computer Science, or been to a “coding bootcamp” you are probably still a Novice software developer.

Risk

Risk IT Marketing Insurance

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

These are (i) government entities; (ii) entities subject to the Gramm-Leach-Bliley Act; (iii) entities subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and Health Information Technology for Economic and Clinical Health Act; (iv) nonprofits; and (v) institutions of higher education. Controllers must.

Personal data

Personal data GDPR Sales Privacy

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Data Matters

JUNE 26, 2018

If voters pass the initiative, it would go into effect the day after the election — providing essentially no time to develop an extensive internal regulatory program, yet providing immediate exposure to penalties for failures to have those extensive compliance processes in operation. What Is Personal Information. biometric data.

Privacy

Privacy GDPR Sales Data breaches

Information Management Today

New York Department of Financial Services Issues Guidance Regarding Life Insurers’ Use of External Consumer Data in Underwriting

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

Webinars

Trending Sources

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

Webinars

Understanding HIPAA: A Guide to Avoiding Common Violations

UAE: Federal level data protection law enacted

Saudi Arabia’s New Data Protection Law – What you need to know

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

How to improve your cyber resilience

GDPR is upon us: are you ready for what comes next?

California Enacts Broad Privacy Laws Modeled on GDPR

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

California Enacts Broad Privacy Protections Modeled on GDPR

Cybersecurity: Managing Risks With Third Party Companies

The Impact of Data Protection Laws on Your Records Retention Schedule

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

Preparing for GDPR – Is the Way You Process Information Compliant with Data Protection Laws?

#ModernDataMasters: Mike Evans, Chief Technology Officer

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Preparing for GDPR – Is the Way You Process Information Compliant with Data Protection Laws?

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Regulatory Update: NAIC Spring 2019 National Meeting

#ModernDataMasters: Henrik Liliendahl, Chairman & CTO, Product Data Lake

Network Security Architecture: Best Practices & Tools

The debate on the Data Protection Bill in the House of Lords

Mic Drop: California AG releases long-awaited CCPA Rulemaking

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

The Orion blockchain database: Empowering multi-party data governance

#ModernDataMasters: Bob More, SVP Global Field Operations

Sustainable Software Requires Deep Agility & Expertise

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Stay Connected