Statutes, codes, and regulations
New York Codes, Rules and Regulations
Title 11 - INSURANCEChapter XIX - Privacy Of Consumer Financial and health InformationPart 421 - Standards For Safeguarding Customer Information
Development and Implementation of Information Security Program
Section 421.5 - Assess risk

N.Y. Comp. Codes R. & Regs. tit. 11 § 421.5

Download
PDF
Current through Register Vol. 46, No. 50, December 11, 2024
Section 421.5 - Assess risk

The licensee:

(a) identifies reasonably foreseeable internal or external threats that could result in unauthorized disclosure, misuse, alteration, or destruction of customer information or customer information systems;
(b) assesses the likelihood and potential damage of these threats, taking into consideration the sensitivity of customer information; and
(c) assesses the sufficiency of policies, procedures, customer information systems, and other arrangements in place to control risks.

N.Y. Comp. Codes R. & Regs. Tit. 11 § 421.5