Impacts of South Carolina’s Cybersecurity Law
Agencies that hold a South Carolina non-resident license and have 10+ employees soon will need to comply with the state’s Insurance Data Security Act. This spring, the governor signed the legislation, which takes effect Jan. 1, 2019 with staggered implementation dates through July 2020.
This makes South Carolina the first state to adopt the National Association of Insurance Commissioners’ Insurance Data Security Model Law. As we previously reported in Agent Headlines, the model law underwent a series of revisions to make it less onerous thanks to insurance industry advocacy efforts (including our own).
As we comb through the law, it appears that Health Insurance Portability and Accountability Act (HIPAA)-compliant agencies simply may need to provide a written statement. We have been in touch with our counterparts in South Carolina and plan to share their compliance guidelines when they become available. Watch Agent Headlines for updates.
In the meantime, get ahead of the game by accessing our state-specific HIPAA compliance resources.