Posts Tagged ‘cyber’



August 16th, 2018

Being Prepared for Cyber Terrorism

Posted at 1:00 AM ET

terrorism-rep-connections-banner-2Cyberattacks backed by hostile governments are increasingly a reality; companies should adopt strategies to strengthen cyber resilience.

Marsh’s 2018 Terrorism Risk Insurance Report, produced with support from Guy Carpenter, suggests that companies should implement strategies for scenario-based testing, quantifying the potential financial impact of an attack and reviewing options for transferring the financial risk from cyberattacks via insurance. Continue reading…

August 14th, 2018

Regulatory Landscape Part VII: Conclusion

Posted at 1:00 AM ET

GC Capital Ideas has analyzed in the last few posts the intricacies and corporate responsibilities and challenges in a world of constant technological innovation. This order requires striking a balance between new initiatives such as the use of big data and advanced analytics, and regulatory requirements and privacy needs. These are the aims of Global Data Protection Regulation’s (GDPR) and the recently adopted California Consumer Privacy Act of 2018, which goes into effect in 2020. Continue reading…

August 13th, 2018

Regulatory Landscape Part VI: California Consumer Privacy Law

Posted at 1:00 AM ET

The European Union’s (EU) General Data Protection Regulation (GDPR), which became enforceable in the spring, may be a model or a prelude to similar regulations across the Atlantic.

In late June, America’s largest state adopted California Consumer Privacy Act of 2018. The California bill goes into effect on January 1, 2020, allowing lawmakers to propose changes before it becomes enforceable. Compliance with the law will most likely increase the costs of doing business. Continue reading…

August 9th, 2018

Regulatory Landscape Part V: NAIC Model Law

Posted at 1:00 AM ET

The recently enacted European Union (EU) General Data Protection Regulation (GDPR), the National Association of Insurance Commissioners (NAIC) Model Law and the New York State Department of Financial Services (NYDFS) Cybersecurity Act all address data privacy (the personal information of individuals) and data protection (using such personal information for business objectives), but from different perspectives. The NYDFS and NAIC regulations are focused on the technical requirements of financial service companies to assess cyber risk in their systems, implement additional security and report breaches promptly.

Continue reading…

August 8th, 2018

Regulatory Landscape Part IV: NYDFS Cybersecurity Act - Risk of Third Party Service Providers

Posted at 1:00 AM ET

The recently enacted European Union (EU) General Data Protection Regulation (GDPR), the National Association of Insurance Commissioners (NAIC) Model Law and the New York State Department of Financial Services (NYDFS) Cybersecurity Act all address data privacy (the personal information of individuals) and data protection (using such personal information for business objectives), but from different perspectives. The NYDFS and NAIC regulations are focused on the technical requirements of financial services companies to assess cyber risk in their systems, implement additional security and report breaches promptly. The NYDFS regulation became effective on March 1, 2017.

Continue reading…

August 7th, 2018

Regulatory Landscape Part III: New York Department of Financial Services Regulation

Posted at 2:00 AM ET

The recently enacted European Union (EU) General Data Protection Regulation (GDPR), the National Association of Insurance Commissioners (NAIC) Model Law and the New York State Department of Financial Services (NYDFS) Cybersecurity Act all address data privacy (the personal information of individuals) and data protection (using such personal information for business objectives), but from different perspectives. The NYDFS and NAIC regulations are focused on the technical requirements of financial service companies to assess cyber risk in their systems, implement additional security and report breaches promptly.

Continue reading…

August 2nd, 2018

Regulatory Landscape Part I: The New Privacy Order Created by GDPR

Posted at 1:00 AM ET

The European Union’s General Data Protection Regulation (GDPR), which came into effect on May 25, 2018, replaced the Data Protection Directive 95/46/ec as the primary law regulating how companies protect EU citizens’ personal data. The GDPR is expected to set a new standard for consumer data rights; companies will be challenged to put compliant systems and processes in place. For example, the GDPR takes an expansive view of what constitutes personal identification information; broader than that of the NYSDFS or NAIC regulations. Continue reading…

July 11th, 2018

Developments in the Data Privacy Regulatory Landscape

Posted at 1:00 AM ET

The recently enacted European Union (EU) General Data Protection Regulation (GDPR), the National Association of Insurance Commissioners (NAIC) Model Law and the New York State Department of Financial Services (NYDFS) Cybersecurity Act all address data privacy (the personal information of individuals) and data protection (using such personal information for business objectives), but from different perspectives.

Continue reading…

July 4th, 2018

Chart: The Cyber Insurance Matrix Explained

Posted at 1:00 AM ET

Chart examines the policy coverage matrix between cyber and property lines of insurance coverage. Continue reading…