More Information about AIANC Membership at www.AllianceInsuranceAgentsNC.com
STREET WISE Alliance of Insurance Agents of NC
Has your agency ever been the victim of a data breach? A data breach is an incident that involves the unauthorized or illegal viewing, access or retrieval of data by an individual, application or service. It is a type of security breach specifically designed to steal and/or publish data to an unsecured or illegal location.
Table of Contents HAS YOUR AGENCY EVER BEEN THE VICTIM OF A DATA BREACH? ............ 1 DO YOU SELL BOPS AND GLS?...... 2 WHAT DOES CYBER LIABILITY INSURANCE COVER? ...................... 7 HOW MUCH DOES YOUR STATE FINE FOR TEXTING AND DRIVING? ........ 11 It could be anywhere from $20 to $10,000 for a first-time offender—or no ban at all. .. 11
Does your agency … •Obtain social security numbers, personal health information, driver’s license numbers, bank account numbers of insureds? •Have access to confidential client records (financial statements, competitive information)? •Use an agency management system? •Store paper files or are considering going paperless? •Provide online access for payment? •Have a website? •Rely on a computer network on a daily basis? •Allow employees to use personal mobile devices for agency transaction? If yes to any of the above, your agency carries a significant exposure to cyber risk. Has your agency ever been the victim of a data breach?
AIANC’s STREET WISE
Page 1
The term “security breach” means a compromise of the security, confidentiality, or integrity of, or the loss of, computerized data that results in, or there is a reasonable basis to conclude has resulted in – “ (A) the unauthorized acquisition of sensitive personally identifiable information; or “ (B) access to sensitive personally identifiable information that is for an unauthorized purpose, or in excess of authorization. SENSITIVE PERSONALLY IDENTIFIABLE INFORMATION. — The term “sensitive personally identifiable information” means any information or compilation of information, in electronic or digital form that includes— “ (1) an individual’s first and last name or first initial and last name in combination with any two of the following data elements: “ (A) home address or telephone number; Continued on page 2
February, 2014