Effective November 1, 2021, licensees must have comprehensive risk assessment and information security programs (threat management, employee monitoring, access controls, secure development, audit trails, periodic evaluations); cybersecurity incidents that could materially harm consumers or normal business operations must be reported to the State Insurance Commissioner (within 3 business days), and affected residents (pursuant to State breach notification requirements).
Wisconsin Enacts Insurance Data Security Law
Related Posts
Brazil Enshrines Right to Data Protection in Constitution
An important milestone where, Effective February 10, 2022, Brazilians have the constitutional right to the protection of their…
New York Proposes the Digital Fairness Act
If passed, entities that process the PI of 500 or more unique individuals must obtain explicit, informed opt-in…
Brazil ANPD Defines LGPD Investigation and Enforcement
Effective October 29, 2021, the ANPD is able to monitor, inspect and apply administrative sanctions for LGPD compliance in accordance with the…