Menu

Showing 3 posts in Regulatory Compliance.

Another Cybersecurity Wake Up Call: Connecticut Insurance Department Issues Guidance on Cyber Law Set to go Into Effect

Covered entities received two cybersecurity wake up calls from insurance regulators this month. As we have reported, the New York State Department of Financial Services (DFS) issued its long-awaited first cyber enforcement action pursuant to its groundbreaking and first-in-nation cybersecurity regulation. In addition, the Connecticut Insurance Department issued a Bulletin to all licensees, providing guidance for compliance with the Connecticut Insurance Data Security Law (the Act), which goes into effect on October 1, 2020. The Act was modeled after the National Association of Insurance Commissioners Model Cybersecurity Law, which itself was modeled after the DFS cybersecurity regulation. More ›

Long-Awaited DFS Cyber Enforcement Action Sees Charges Filed Against Title Insurer For Exposing Millions of Documents Containing Consumer Personal Information

After several years of anticipation, the New York State Department of Financial Services (DFS) has filed its first enforcement action under the agency's groundbreaking and first-in-the-nation 2017 cybersecurity regulation (Part 500 of Title 23 of the New York Codes, Rules, and Regulations), which prescribes how financial services companies licensed to operate in New York should construct their cybersecurity programs. This action is a wakeup call to covered entities to fully implement the directives of Part 500. More ›

CFPB Issues New Mortgage Servicer Guidelines for Transferring Loans to a New Servicer

The Consumer Financial Protection Bureau (CFPB) recently published compliance guidanceeffective immediately—on the handling of information and documents during the transfer of a mortgage loan to a new servicer. Following related guidance issued in 2014 on these mortgage servicer transfers, CFPB supervisory examiners have continued to document weaknesses in servicer compliance management systems and violations of Regulation X, including inadequate policies and procedures for transferring loan information and documents in a timely and accurate manner that ensures uninterrupted continuation of required servicing functions. More ›

Search
Subscribe via Email