On October 24, 2017, the National Association of Insurance Commissioners (NAIC) adopted an Insurance Data Security Model Law. The NAIC Model Law builds on existing data privacy and consumer breach notification requirements by requiring insurance licensees to comply with detailed requirements regarding their information security program and responding to and giving notification of cybersecurity events.

The NAIC Model Law is similar to the cybersecurity regulation issued earlier this year by the New York Department of Financial Services (DFS). Unlike the New York DFS regulation, however, the NAIC Model Law pertains solely to insurance licensees, and because it is a model law, it will only apply to licensees in any given state if it is enacted into law by that state. Moreover, each state will have the freedom to modify the text of the NAIC Model Law as it sees fit.

Please join Mayer Brown partners Larry Hamilton and Jeff Taft as they discuss:

  • Substantive requirements of the NAIC Model Law
  • How the NAIC Model Law compares with the New York DFS regulation
  • Impact of the NAIC Model Law and the New York DFS regulation on security of nonpublic information of insurance companies

For additional information, please contact GFMI@mayerbrown.com.

Mayer Brown’s Global Financial Markets Initiative helps clients deal with the legal and business challenges resulting from the ongoing turbulence in worldwide financial markets. By mobilizing the firm’s global resources from multiple practices and offices, the initiative provides clients with knowledgeable and timely counsel on a broad spectrum of their legal needs.

Europe
5:00 p.m. – 5:30 p.m. CET
4:00 p.m. – 4:30 p.m. GMT

United States
11:00 a.m. – 11:30 a.m. EST
10:00 a.m. – 10:30 a.m. CST
9:00 a.m. – 9:30 a.m. MST
8:00 a.m. – 8:30 a.m. PST