6.E(2)(a)—Third-Party Event Notification
>Control Description
In the case of a Cybersecurity Event involving Nonpublic Information that is in the possession, custody or control of a Third-Party Service Provider of a Licensee that is an assuming insurer, the assuming insurer shall notify its affected ceding insurers and the Commissioner of its state of domicile within 72 hours of receiving notice from its Third-Party Service Provider that a Cybersecurity Event has occurred.
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.