Section 420-Q:1 – Purpose and Scope.
420-Q:1 Purpose and Scope. – The purpose of this chapter is to set forth standards and procedures for electronic delivery of insurance documents and notices in a manner that will promote efficient delivery while maintaining consumer protection. Source. 2021, 57:5, eff. July 24, 2021.
Section 420-Q:2 – Delivery Standards and Procedures.
420-Q:2 Delivery Standards and Procedures. – I. Subject to the requirements of this section, any notice to a party or any other document required by law in an insurance transaction or that is to serve as evidence of insurance coverage may be delivered, stored, and presented by electronic means if the electronic means meet […]
Section 420-P:14 – Severability.
420-P:14 Severability. – If any provision of this chapter, or the application thereof to any person or circumstance is held invalid, such invalidity shall not affect other provisions or applications of this chapter which can be given effect without the invalid provision or application, and to this end the provisions of the chapter are […]
Section 420-P:4 – Information Security Program.
420-P:4 Information Security Program. – I. Implementation of the program shall be commensurate with the size and complexity of the licensee, the nature and scope of the licensee’s activities, including its use of third-party service providers, and the sensitivity of the nonpublic information used by the licensee or in the licensee’s possession, custody, or […]
Section 420-P:5 – Investigation of a Cybersecurity Event.
420-P:5 Investigation of a Cybersecurity Event. – I. If the licensee learns that a cybersecurity event has or may have occurred, the licensee or an outside vendor and/or service provider designated to act on behalf of the licensee, shall conduct a prompt investigation. II. During the investigation, the licensee, or an outside vendor and/or […]
Section 420-P:6 – Notification of a Cybersecurity Event.
420-P:6 Notification of a Cybersecurity Event. – I. Each licensee shall notify the commissioner within 3 business days of a determination that a cybersecurity event has occurred when either of the following criteria has been met: (a) New Hampshire is the licensee’s state of domicile, in the case of an insurer, or this state […]
Section 420-P:7 – Power of Commissioner.
420-P:7 Power of Commissioner. – I. The commissioner shall have power to examine and investigate the affairs of any licensee to determine whether the licensee has been or is engaged in any conduct in violation of this chapter. This power is in addition to the powers which the commissioner has under RSA 400-A:16 and […]
Section 420-P:8 – Confidentiality.
420-P:8 Confidentiality. – I. Any documents, materials, or other information in the control or possession of the department that are furnished by a licensee or an employee or agent thereof acting on behalf of licensee pursuant to RSA 420-P:4, IX, RSA 420-P:6, II(b), (c), (d), (e), (h), (j), and (k), or that are obtained […]
Section 420-P:9 – Exceptions.
420-P:9 Exceptions. – I. The following exceptions shall apply to this chapter: (a) A licensee with fewer than 20 employees, including any independent contractors, shall be exempt from RSA 420-P:4. (b) An employee, agent, representative, or designee of a licensee, who is also a licensee, shall be exempt from RSA 420-P:4 and need not […]
Section 420-P:10 – Safe Harbor for HIPAA Compliance.
420-P:10 Safe Harbor for HIPAA Compliance. – A licensee that is in possession of protected health information subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and that has established and maintains programs and procedures regarding information privacy, security, and breach notification that are prescribed by HIPAA and by Parts 160 […]