Iowa Code
Chapter 507F - INSURANCE DATA SECURITY
Section 507F.13 - Applicability.

507F.13 Applicability.
1. This chapter shall not apply to a licensee that is subject to, and in compliance with, the Health Insurance Portability and Accountability Act. The licensee shall annually submit to the commissioner a written certification of the licensee’s compliance with HIPAA.
2. This chapter shall not apply to a licensee that is owned or controlled by a federally insured depository institution that is subject to, and in compliance with, the Gramm-Leach-Bliley Act or comparable federal law and corresponding regulations.
3. A licensee shall have one hundred eighty days from the date the licensee no longer qualifies for exemption under subsection 1 or 2 to comply with this chapter.
2021 Acts, ch 79, §13, 17
Section effective January 1, 2022; 2021 Acts, ch 79, §17
NEW section

<< Previous
Next >>

Structure Iowa Code

Iowa Code

Title XIII - COMMERCE

Chapter 507F - INSURANCE DATA SECURITY

Section 507F.1 - Title.

Section 507F.2 - Purpose and scope.

Section 507F.3 - Definitions.

Section 507F.4 - Information security program.

Section 507F.5 - Third-party service provider arrangements.

Section 507F.6 - Cybersecurity event — investigation.

Section 507F.7 - Cybersecurity event — notification and report to the commissioner.

Section 507F.8 - Cybersecurity event — notification to consumers.

Section 507F.9 - Cybersecurity event — third-party service providers.

Section 507F.10 - Cybersecurity event reinsurers.

Section 507F.11 - Cybersecurity event — producers of record.

Section 507F.12 - Confidentiality.

Section 507F.13 - Applicability.

Section 507F.14 - Penalties.

Section 507F.15 - Rules and enforcement.

Section 507F.16 - Severability.