NAIC Passes Insurance Data Security Model Law
Cybersecurity model law creates information security standards for insurers

WASHINGTON (Oct. 24, 2017) — The National Association of Insurance Commissioners adopted the Insurance Data Security Model Law today during a joint meeting of the Executive (EX) Committee and Plenary.

The model law, adopted during National Cybersecurity Awareness Month, creates rules for insurers, agents and other licensed entities covering data security, investigation and notification of breach. This includes maintaining an information security program based on ongoing risk assessment, overseeing third-party service providers, investigating data breaches and notifying regulators of a cybersecurity event.

"Considering the recent series of data breaches, cybersecurity is more important now than ever," said Ted Nickel, NAIC President and Wisconsin Insurance Commissioner. "Regulators have a critical role to play in protecting consumers as the cyber landscape continues to evolve and this model law sets cybersecurity customs for insurers to help safeguard consumers." 

The model law progressed through the NAIC  Innovation and Technology (EX) Task Force and the Cybersecurity (EX) Working Group during the NAIC's Summer 2017 National Meeting. The working group solicited input from regulators as well as industry and consumer representatives throughout the drafting process.

"We've made significant progress on cybersecurity this year and passing this model law creates a platform that enhances our mission of protecting consumers," said Raymond G. Farmer, NAIC Secretary-Treasurer, South Carolina Insurance Director and chair of the Cybersecurity (EX) Working Group.

About the NAIC

The National Association of Insurance Commissioners (NAIC) is the U.S. standard-setting and regulatory support organization created and governed by the chief insurance regulators from the 50 states, the District of Columbia and five U.S. territories. Through the NAIC, state insurance regulators establish standards and best practices, conduct peer review, and coordinate their regulatory oversight. NAIC staff supports these efforts and represents the collective views of state regulators domestically and internationally. NAIC members, together with the central resources of the NAIC, form the national system of state-based insurance regulation in the U.S. For more information, visit

Visit the NEWSROOM for media resources, archived releases and alerts   Join Our E-mail List to receive the latest news releases and other information from the NAIC Communications Division
  RSS Feed You Tube LinkedIn Facebook Twitter  
NAIC Web Site | State Insurance Department Sites | Copyright & Reprint Info | Privacy Statement ]
©2018 National Association of Insurance Commissioners. All rights reserved.