Investor Presentaiton
QUESTION:
Exemption
What does being exempt mean for licensees compliant
with HIPAA and the NY Cybersecurity Regulation?
HIPAA compliant and files a
certification that it is HIPAA
compliant
Exempt from
Establishing another formal
Information Security
Program (Section 38-99-20)
Still Required
Compliance with other
provisions such as:
ā
Investigation of
.
Cybersecurity Event
Notices of Cybersecurity
Compliant with New York
Cybersecurity Regulation and
files a certification that that
effect
Establishing another formal
Information Security
Program (Section 38-99-20)
Events to the Director
Annual certification that
insurer is still HIPAA
compliant
Compliance with other provisions
such as:
Prompt Investigation of
Cybersecurity Event
Notices of Cybersecurity Events
to the Director consistent with
SC law
Annual certification that insurer
is still compliant with New York
Cybersecurity Regulation and
with the investigation andView entire presentation