The NAIC Data Security Law, adopted in 2017, requires insurance entities to establish information security programs, perform risk assessments, and report cybersecurity incidents. It applies to insurers, agencies, and brokers licensed by state insurance departments, with penalties reaching up to $50,000 per violation and possible imprisonment. Thales supports compliance through solutions for application, data, and identity security. Its tools secure applications, encrypt sensitive data, manage access controls, enable multi-factor authentication, and ensure compliance with NAIC-mandated safeguards for risk mitigation, monitoring, and third-party oversight.

Join for free to read