Data Privacy and Insurance - Information Management Today

Private UK health data donated for medical research shared with insurance companies

The Guardian Data Protection

NOVEMBER 11, 2023

Observer investigation reveals UK Biobank opened its biomedical database to insurance firms despite pledge it would not do so Sensitive health information donated for medical research by half a million UK citizens has been shared with insurance companies despite a pledge that it would not be. Continue reading.

Insurance

Insurance Data Privacy Privacy Risk

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. Location Matters.

Data Privacy

Data Privacy Compliance Privacy Security

Why Cyber Insurance is Essential in 2022

IT Governance

MAY 24, 2022

One of the most common ways to mitigate the risk of a cyber security incident is cyber insurance. These activities aren’t typically included in standard business insurance policies, which tend to only cover costs related to technical issues, such as corrupted hard drives and lost devices. The benefits of cyber insurance.

Insurance

Insurance Data breaches GDPR Ransomware

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Top 8 Cyber Insurance Companies for 2022

eSecurity Planet

APRIL 22, 2022

That’s where cyber insurance may be able to help. According to the Ponemon Institute and IBM, the global average cost of a data breach is $4.24 But there’s a catch: Insurers are going to carefully assess your cybersecurity controls before writing any policy, and there are limits to coverage. Cyber Insurance is Booming.

Insurance

Insurance Ransomware Cybersecurity Marketing

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

IT Governance

NOVEMBER 13, 2023

On 14 September, Mulkay discovered that the compromised files contained personal information, including “name, address, date of birth, Social Security number, driver’s license number or state ID, medical treatment information, and health insurance information”. Records breached: 79,582 Ontario hospitals update: information relating to 5.6

Data Privacy

Data Privacy Privacy Security Data breaches

Two Years on from GDPR: Has It Driven Growth in Cybersecurity Insurance?

Dark Reading

SEPTEMBER 10, 2020

Whilst GDPR has put the spotlight on data privacy and cyber issues, there are other more prominent trends that are driving a greater take-up of cyber insurance, says Ben Maidment, Class Underwriter - Cyber, Physical & Technology at Brit Insurance.

Insurance

Insurance GDPR Data Privacy Cybersecurity

The risks and limitations of AI in insurance

IBM Big Data Hub

MAY 8, 2023

In my previous post , I described the different capabilities of both discriminative and generative AI, and sketched a world of opportunities where AI changes the way that insurers and insured would interact. Usage risk—inaccuracy The performance of an AI system heavily depends on the data from which it learns.

Insurance

Insurance Risk Artificial Intelligence Government

The Week in Cyber Security and Data Privacy: 16–22 October 2023

IT Governance

OCTOBER 24, 2023

American Family Insurance confirms cyberattack is behind IT outages Date of breach: 14 or 15 October 2023. Breached organisation: American Family Insurance, headquartered in Wisconsin, US. The post The Week in Cyber Security and Data Privacy: 16–22 October 2023 appeared first on IT Governance UK Blog.

Data Privacy

Data Privacy Privacy Security Data breaches

The Week in Cyber Security and Data Privacy: 30 October – 5 November 2023

IT Governance

NOVEMBER 6, 2023

Compromised information included patients’ names, dates of birth, postal addresses, Social Security numbers, diagnosis and treatment information, and health insurance information. Compromised data included names, Social Security numbers, and health/medical insurance plan numbers.

Data Privacy

Data Privacy Privacy Libraries Security

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

IT Governance

JANUARY 9, 2024

million people was compromised, including names, addresses, dates of birth, Social Security numbers, taxpayer identification numbers, medical information, health insurance information, and billing and claims information. Data breached: 4,452,782 records. 79 of them are known to have had data exfiltrated, exposed or otherwise breached.

Data Privacy

Data Privacy Privacy Manufacturing Data breaches

Connecticut Makes Five: The Constitution State Enacts Broad Data Privacy Law Effective July 2023

Data Matters

JUNE 22, 2022

Connecticut has passed a new state data privacy law slated to go into effect on July 1, 2023. Consistent with all of the state data privacy laws we have seen to date, the Connecticut law does not provide for a private right of action to broadly enforce the privacy rights provisions of the law.

Data Privacy

Data Privacy Privacy Personal data Sales

FTC and HHS Update Consumer Health Data Privacy and Security Guide

Hunton Privacy

SEPTEMBER 21, 2023

The publication offers general guidance on issues including what entities the specific laws and regulations cover, the measures covered entities can adopt to maintain the privacy and security of consumers’ health information, and the steps entities must take in the event of a data breach.

Privacy

Privacy Data Privacy Security Insurance

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

Welfare Benefits Plan Source 1 ; source 2 New Healthcare USA Yes 13,079 Insurance ACE/Humana Inc. Subscribe now The post The Week in Cyber Security and Data Privacy: 12 – 18 February 2024 appeared first on IT Governance UK Blog. Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing. New EU restrictions could force companies to change data transfer practices and adopt more advanced data encryption methods. In recent years, costly breaches and evolving data security concerns have bubbled up to a board level agenda item.

Data Privacy

Data Privacy Privacy Security Encryption

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. GB Signature Performance, Inc.

Data Privacy

Data Privacy Manufacturing Privacy Security

How insurers drive success in the digital transformation race with modern data management

Reltio

JUNE 9, 2022

The insurance industry is facing unprecedented disruption. Insurance carriers have been called to transform customer experience, business offerings, and operations. As an insurer, your current business models are being challenged by new thinking, new competitors, and new ways of working.

Digital transformation

Digital transformation Insurance Customer Experience MDM

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

IT Governance

NOVEMBER 28, 2023

The post The Week in Cyber Security and Data Privacy: 20 – 26 November 2023 appeared first on IT Governance UK Blog. In the meantime, if you missed it, check out last week’s round-up. Please do also let us know what you think about our new table format.

Data Privacy

Data Privacy Privacy Energy and Utilities Data breaches

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

IT Governance

NOVEMBER 20, 2023

Rackspace ransomware recovery has cost $11 million so far Rackspace has told the SEC that recovering from a ransomware attack last December has cost it $11 million in remediation so far – although half of that amount has been covered by insurance. That’s it for this week’s round-up. We hope you found it useful.

Data Privacy

Data Privacy Privacy Data breaches Security

The Week in Cyber Security and Data Privacy: 23–29 October 2023

IT Governance

OCTOBER 31, 2023

Incident details: A security vulnerability in a third party left personal data exposed of thousands of motorists who had their vehicle towed on behalf of the An Garda Síochána. It’s unclear how long the vulnerability was in place, or who may have accessed the data. million genetic data profiles leaked.

Data Privacy

Data Privacy Privacy Data breaches Security

ROUNDTABLE: Huge Capital One breach shows too little is being done to preserve data privacy

The Last Watchdog

AUGUST 1, 2019

Related: Hackers direct botnets to manipulate business logic Thompson is accused of pilfering sensitive data for 100 million US and 6 million Canadian bank patrons. It could be FTC first, then European GDPR and Canadian PIPEDA, then upcoming California Consumer Privacy Act, and many other privacy regulations worldwide.

Data Privacy

Data Privacy Privacy Data breaches Cloud

Guidelines Published for Changes to the Singapore Data Privacy Regime

Data Matters

DECEMBER 2, 2020

Regarding data breaches resulting in significant harm : the Advisory Guidelines 1 have prescribed the following classes of personal data that are considered likely to result in significant harm if compromised: (i) Individual’s full name or full national ID number in combination with.

Data Privacy

Data Privacy Privacy Data breaches Personal data

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. This appears to align with the new tiered data classification obligations under the Data Security Law.

Data Privacy

Data Privacy Privacy Compliance Analytics

Privacy in an open-data world: Why government agencies need to be proactive

Collibra

JUNE 23, 2023

The ever-growing digitalization of our world has raised significant concerns about data privacy and security, particularly for agencies that manage and process sensitive and confidential information. Focus: Regulatory frameworks Within the United States there are a number of regulatory frameworks that address citizen privacy.

Privacy

Privacy Government Data Privacy Data breaches

Most under-35s OK with insurers digital spying if it cuts prices

Information Management Resources

JUNE 19, 2018

Despite that willingness by young customers to give up a level of data privacy, most insurance firms are already struggling to deliver a connected experience, says Jerome Bugnet.

Insurance

Insurance Data Privacy IT Privacy

What are the benefits of cyber security as a service?

IT Governance

DECEMBER 14, 2021

Organisations such as IT Governance that offer cyber security as a service assign dedicated experts to oversee the organisation’s data protection and data privacy needs. You’ll receive cyber insurance cover ?. Many cyber-security-as-a-service offerings include cyber insurance as part of the package.

Security

Security Insurance Data breaches Information Security

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Data Protection Report

FEBRUARY 21, 2018

As Data Protection Report posted on January 29, 2018 , lawmakers in Colorado are considering legislation that, if enacted, would significantly strengthen Colorado’s data privacy protections. The proposed bill overlaps with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and state privacy laws.

Data Privacy

Data Privacy Privacy Military Insurance

Over-Retention of Personal Data

Data Protection Report

SEPTEMBER 23, 2021

The declining cost of electronic data storage may have caused some company executives to conclude that retaining personal data forever is “cheap.” The matter involved one of France’s largest insurers, SGAM AG2R LA MONDIALE, which was subject to an inspection by the French data protection authority (the CNIL), in 2019.

Personal data

Personal data Insurance GDPR Record destruction

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

The Last Watchdog

OCTOBER 29, 2018

the Health Insurance Portability and Accountability Act (HIPAA)), the answer is generally that a company should implement a “reasonable data privacy and security program” under all circumstances. Companies should have written data privacy and security policies and procedures in place. Insurability.

Security

Security Data Privacy Privacy Data breaches

LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach

Krebs on Security

JUNE 4, 2019

AMCA has advised LabCorp that Social Security Numbers and insurance identification information are not stored or maintained for LabCorp consumers.” We remain committed to our system’s security, data privacy, and the protection of personal information.” We have also advised law enforcement of this incident.

Insurance

Insurance Data Privacy Access Security

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 17, 2024

France Travail data breach impacted 43 Million people Scranton School District in Pennsylvania suffered a ransomware attack Lazarus APT group returned to Tornado Cash to launder stolen funds Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case UK Defence Secretary jet hit by an electronic warfare attack in Poland Cisco (..)

Data breaches

Data breaches Security Computer and Electronics Ransomware

Data Protection in Financial Services Week 2022

Data Matters

FEBRUARY 25, 2022

Sidley and OneTrust DataGuidance are pleased to announce that registration is now open for their annual Data Protection in Financial Services (DPFS) Week. Join us from February 28 – March 3 for DPFS Week 2022 , a series of webinars looking at the impacts of data privacy across the financial sector.

Financial Services

Financial Services Privacy Data Privacy Cybersecurity

CPPA Board Discusses Agency’s Top Priorities and the Status of CPRA Rulemaking Process

Hunton Privacy

MARCH 9, 2023

Insights from Subcommittees : The Board’s Public Awareness Subcommittee is committed to raising public awareness of consumers’ rights and businesses’ responsibilities under the California Consumer Privacy Act (“CCPA”) as part of its top priorities for this year.

Privacy

Privacy Insurance Data Privacy Cybersecurity

Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance

Information Governance Perspectives

MAY 10, 2020

In May of 2020 I was honored to speak at the MERv conference with John Frost of Box on the topic of Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance. Rafael Moscatel, CIPM, CRM, IGP, is the Managing Director of Compliance and Privacy Partners.

Compliance

Compliance Information governance Privacy Data Privacy

Rare recovery in a complex ransomware case: Major NetWalker arrest leads to significant asset seizure

Data Protection Report

DECEMBER 8, 2022

Norton Rose Fulbright Canada’s cyber litigation team recently obtained an order in favour of an insurer, granting it relief from forfeiture in respect of more than 11 bitcoins from the assets seized from a prolific ransomware gang. [1] Insurers excluded from restitution order.

Ransomware

Ransomware Insurance IT Data breaches

Protecting sensitive information can’t be left to chance

OpenText Information Management

MARCH 22, 2019

Confidentiality and data privacy have always been concerns for businesses, particularly in industries like legal, healthcare, financial, and insurance.

Insurance

Insurance Data Privacy Privacy ECM

MY TAKE: NIST Cybersecurity Framework has become a cornerstone for securing networks

The Last Watchdog

APRIL 30, 2019

The CSF’s core principles have been incorporated into Europe’s GDPR , NYDFS’s cybersecurity requirement s, California’s Consumer Privacy Act and Ohio’s Data Protection Act. And they echo through a wide variety of other risk assessment tools and initiatives that touch on third-party risks and data privacy. Wrenn said. “So

Cybersecurity

Cybersecurity Insurance Security Privacy

The Top 10 Hipaa Violations to Look Out For

Record Nations

NOVEMBER 22, 2019

The Health Insurance Portability & Accountability Act (HIPAA) was passed in 1996, and at its most basic is designed to help safeguard protected health information (PHI) by providing standards for ensuring the data privacy and security of medical information.

Insurance

Insurance Data Privacy Privacy Security

New Connecticut Breach Notification Requirements and Cybersecurity Safe Harbor Effective October 2021

Hunton Privacy

AUGUST 2, 2021

On June 16, 2021, Connecticut Governor Ned Lamont signed HB 5310, An Act Concerning Data Privacy Breaches. New Breach Notification Requirements (HB 5310). requiring “preliminary substitute notice” to individuals if a business cannot provide direct notification within the 60-day notification timeframe.

Cybersecurity

Cybersecurity Insurance Military Data Privacy

Connecticut and Nevada Legislatures Pass Health Data Laws

Hunton Privacy

JUNE 27, 2023

These bills contain provisions similar to Washington’s My Health My Data Act and expand on protections in the Health Insurance Portability and Accountability Act of 1996 and other privacy laws. 370 would provide consumers with access, opt-out and deletion rights with respect to their consumer health data.

Data Privacy

Data Privacy Personal data Privacy Insurance

Intellihartx data breach exposed the personal and health info of 490,000 individuals

Security Affairs

JUNE 12, 2023

In February, the Clop ransomware group claimed to have stolen sensitive data from over 130 organizations by exploiting a zero-day vulnerability ( CVE-2023-0669 ) in Fortra’s GoAnywhere MFT secure file transfer tool. ITx promptly launched an investigation to determine the nature and scope of the Fortra Event. .

Data breaches

Data breaches Ransomware Insurance Data Privacy

After Springhill: Assessing the Impact of Ransomware Lawsuits

eSecurity Planet

OCTOBER 18, 2021

” Cyber Insurance No Longer Reliable. ” Crockett said unofficial numbers indicate that only about 10 percent of such cyber insurance claims are paid out. ” Crockett said unofficial numbers indicate that only about 10 percent of such cyber insurance claims are paid out. “This is a form of economic warfare.”

Ransomware

Ransomware Insurance Digital transformation Cybersecurity

How IBM and AWS are partnering to deliver the promise of AI for business

IBM Big Data Hub

OCTOBER 30, 2023

Adopting AI in business at scale is not without its challenges, including data privacy concerns, integration complexities and the need for skilled personnel. Scaling AI in business presents unique challenges: Data accessibility : Fragmented and siloed data stifle advancement.

Analytics

Analytics Retail Cloud Insurance

Connecticut Enacts Consumer Privacy Law

Hunton Privacy

MAY 10, 2022

On May 10, 2022, Connecticut Governor Ned Lamont signed An Act Concerning Personal Data Privacy and Online Monitoring , after the law was previously passed by the Connecticut General Assembly in April. Connecticut is now the fifth state to enact a consumer privacy law.

Privacy

Privacy Personal data Sales B2B

Hunton Discusses Critical Cyber Coverage Selection Issues

Hunton Privacy

APRIL 4, 2017

In March 2017, Syed Ahmad, a partner with Hunton & Williams LLP’s insurance practice, and Eileen Garczynski, partner at insurance brokerage Ames & Gough, co-authored an article, Protecting Company Assets with Cyber Liability Insurance , in Mealey’s Data Privacy Law Report. Read the full article.

Insurance

Insurance Data Privacy Privacy IT

Private UK health data donated for medical research shared with insurance companies

Security Compliance & Data Privacy Regulations

Webinars

Trending Sources

Why Cyber Insurance is Essential in 2022

Webinars

Top 8 Cyber Insurance Companies for 2022

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

Two Years on from GDPR: Has It Driven Growth in Cybersecurity Insurance?

The risks and limitations of AI in insurance

The Week in Cyber Security and Data Privacy: 16–22 October 2023

The Week in Cyber Security and Data Privacy: 30 October – 5 November 2023

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

Connecticut Makes Five: The Constitution State Enacts Broad Data Privacy Law Effective July 2023

FTC and HHS Update Consumer Health Data Privacy and Security Guide

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

How insurers drive success in the digital transformation race with modern data management

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

The Week in Cyber Security and Data Privacy: 23–29 October 2023

ROUNDTABLE: Huge Capital One breach shows too little is being done to preserve data privacy

Guidelines Published for Changes to the Singapore Data Privacy Regime

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

Privacy in an open-data world: Why government agencies need to be proactive

Most under-35s OK with insurers digital spying if it cuts prices

What are the benefits of cyber security as a service?

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Over-Retention of Personal Data

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Data Protection in Financial Services Week 2022

CPPA Board Discusses Agency’s Top Priorities and the Status of CPRA Rulemaking Process

Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance

Rare recovery in a complex ransomware case: Major NetWalker arrest leads to significant asset seizure

Protecting sensitive information can’t be left to chance

MY TAKE: NIST Cybersecurity Framework has become a cornerstone for securing networks

The Top 10 Hipaa Violations to Look Out For

New Connecticut Breach Notification Requirements and Cybersecurity Safe Harbor Effective October 2021

Connecticut and Nevada Legislatures Pass Health Data Laws

Intellihartx data breach exposed the personal and health info of 490,000 individuals

After Springhill: Assessing the Impact of Ransomware Lawsuits

How IBM and AWS are partnering to deliver the promise of AI for business

Connecticut Enacts Consumer Privacy Law

Hunton Discusses Critical Cyber Coverage Selection Issues

Stay Connected