According to a post from Hunton Andrews Kurth's Privacy & Information Security Law Blog, new cybersecurity rules for licensed insurance companies took effect in South Carolina Jan. 1, 2019. In addition to the state’s breach notification requirements, companies are now required to notify state insurance authorities of data breaches within 72 hours of confirming nonpublic information was “disrupted, misused, or accessed without authorization.” The law marks the first in the country to be based on the data security model drafted by the National Association of Insurance Commissioners.
Full Story
Comments
If you want to comment on this post, you need to login.