California Code of Regulations
Title 10 - Investment
Chapter 5 - Insurance Commissioner
Subchapter 5.9 - Privacy of Nonpublic Personal Information
Article 4 - Standards for Safeguarding Nonpublic Personal Information
Section 2689.16 - Assess Risk

Universal Citation: 10 CA Code of Regs 2689.16

Current through Register 2024 Notice Reg. No. 38, September 20, 2024

The licensee:

(a) Identifies reasonably foreseeable internal and external threats that could result in unauthorized disclosure, misuse, alteration, or destruction of customer information or customer information systems;

(b) Assesses the likelihood and potential damage of these threats, taking into consideration the sensitivity of customer information; and

(c) Assesses the sufficiency of policies, procedures, customer information systems, and other safeguards in place to control risks.

1. New section filed 11-22-2002; operative 3-24-2003 (Register 2002, No. 47).

Note: Authority cited: Sections 791- 791.27, Insurance Code; and 15 U.S.C. Sections 6801, 6805, 6807 and 6824. Reference: Section 791, Insurance Code; and 15 U.S.C. Section 6825.

Disclaimer: These regulations may not be the most recent version. California may have more current or accurate information. We make no warranties or guarantees about the accuracy, completeness, or adequacy of the information contained on this site or the information linked to on the state site. Please check official sources.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.