Phase 2 of PA's Insurance Data Security Law Is Coming — Record of Compliance Required

In 2023, Pennsylvania joined the growing number of states enacting the National Association of Insurance Commissioners' (NAIC) Model Law on Insurance Data Security. On Dec. 11, 2024 (just four months away), the second phase of the law goes into effect, which requires licensees to undertake detailed risk assessments, design and implement comprehensive and written cybersecurity programs, and, for some organizations, publicly certify compliance with the law.

6 minute read September 01, 2024 at 12:05 AM

Joshua A. Mooney and Ashley Pusey

In 2023, Pennsylvania joined the growing number of states enacting the National Association of Insurance Commissioners' (NAIC) Model Law on Insurance Data Security.

This premium content is locked for LawJournalNewsletters subscribers only

ENJOY UNLIMITED ACCESS TO THE SINGLE SOURCE OF OBJECTIVE LEGAL ANALYSIS, PRACTICAL INSIGHTS, AND NEWS IN LawJournalNewsletters

Stay current on the latest information, rulings, regulations, and trends

Includes practical, must-have information on copyrights, royalties, AI, and more

Tap into expert guidance from top entertainment lawyers and experts

Already have an account? Sign In Now

For enterprise-wide or corporate access, please contact Customer Service at [email protected] or call 1-877-256-2473.

Innovation Engineering: How Firms Can Think Bigger and Ask Better Questions

Most firms are aiming their newest tools at the work they already do — pouring their most powerful technology into running the same tasks a little faster. But when everyone automates the same tasks at once, no one pulls ahead. That reaches the future a little faster while leaving a firm’s largest opportunity untouched — and that opportunity isn’t doing more of the existing work, but transforming how the high-value work gets done.

June 01, 2026

Don’t Let AI Distract You from What’s Really Breaking: The Security Basics

AI is becoming both an accelerant and a distraction for cybersecurity. In many respects, AI is acting as a stress test for existing security operations by exposing how difficult many organizations still find it to enforce basic controls consistently at scale.

June 01, 2026

Legal AI’s Biggest Mistake: Treating All Workflows the Same

Artificial intelligence is rapidly embedding itself into legal workflows, but much of the conversation treats all use cases as if they carry the same level of risk, even if they do not. The more useful question is not whether AI works, but where it can be safely applied and where it cannot.

June 01, 2026

The Most Important Tool for AI Savvy Lawyers? It’s the Right Mindset

AI-savvy lawyering is already something that clients are starting to demand. The technology is capable; the challenge now is cultural and organizational change.

June 01, 2026

Phase 2 of PA's Insurance Data Security Law Is Coming — Record of Compliance Required

This premium content is locked for LawJournalNewsletters subscribers only

Continue Reading

Innovation Engineering: How Firms Can Think Bigger and Ask Better Questions

Don’t Let AI Distract You from What’s Really Breaking: The Security Basics

Legal AI’s Biggest Mistake: Treating All Workflows the Same

The Most Important Tool for AI Savvy Lawyers? It’s the Right Mindset