HB101 Alabama 2019 Session

Summary

Primary Sponsor

Kerry Rich

Republican

Session

Regular Session 2019

Title

Insurance Data Security Law, Insurance Commissioner to regulate, reports to Insurance Dept., licensee to implement information security programs, oversight of third-party providers, reports re cybersecurity events, criminal penalties, Secs. 10A-20-6.16, 27-21A-23 am'd.

Description

Under existing law, insurers and other entities are required to provide notice to certain persons upon a breach of security resulting in the unauthorized acquisition of sensitive personally identifying information.

This bill would require insurers and other entities licensed by the Department of Insurance to develop, implement, and maintain an information security program and report certain cybersecurity events to the Commissioner of Insurance. The bill would provide that information provided to the Commissioner of Insurance pursuant to this act would be confidential and privileged under certain conditions. This bill would also provide civil penalties for violations. The bill is based on the Insurance Data Security Model Law of the National Association of Insurance Commissioners.

Show more Show less

Subjects

Insurance Department