NAIC has proposed a cybersecurity law for insurance companies but states have been slow to adopt it.

The “Insurance Data Security Model Act,” a significant initiative of the National Association of Insurance Commissioners (NAIC) in response to concerns about cybersecurity and the result of more than a year and a half of drafting work, was completed in October 2017 to be ready to roll out to states during the 2018 legislative sessions.

It wasn’t clear at the start of the sessions how many states would adopt or even introduce the bill during the first year after its development, and two months into the session only a handful of states had shown indications of meaningful legislative action in 2018. Regulators in South Carolina and Rhode Island who had led the model law development process at the NAIC were the first ones to seek its introduction.

Want to continue reading?
Become a Free
PropertyCasualty360 Digital Reader.


  • All news coverage, best practices, and in-depth analysis.
  • Educational webcasts, resources from industry leaders, and informative newsletters.
  • Other award-winning websites including and

Already have an account?


© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

Paul Tetrault


Join PropertyCasualty360

Don’t miss crucial news and insights you need to make informed decisions for your P&C insurance business. Join now!

  • Unlimited access to - your roadmap to thriving in a disrupted environment
  • Access to other award-winning ALM websites including, and
  • Exclusive discounts on PropertyCasualty360, National Underwriter, Claims and ALM events

Already have an account? Sign In Now
Join PropertyCasualty360

Copyright © 2024 ALM Global, LLC. All Rights Reserved.