In early May, South Carolina became the first state to enact the NAIC's Insurance Data Security Model Law. It won't be the last. Discussions about the model law are ongoing in at least three other states now, with many more expected to consider it in the coming legislative sessions.

Who exactly does the NAIC model law apply to? What are its requirements? Do I really have to report a breach within 72 hours? Are there any exemptions? When does the law become effective? How does it differ from New York's cybersecurity regulation?

Join PCI along with Mayer Brown attorneys Larry Hamilton and Jeffrey Taft on Thursday, June 21st at 1 p.m. CST for a discussion on what steps to begin taking in order to get into compliance with the model law.

Related Capabilities