Data Controls and Metrics in Asia Pacific



 

Developed countries from the West are not the only ones who are upgrading their systems against insurance theft. With the widespread of technology and the integration of new knowledge and computer geniuses, even those living in the suburbs of Africa now has their own system to secure their data and confidential information. 

Axis Capital, with group of insurance and reinsurance companies in Bermuda, Australia, United Kingdom, Singapore and in over ten states in the US, is one of the many companies reported to first integrate a more tighter security system in the start of 2015 in the Asia-Pacific. 

Data theft and fraud are fast becoming key issues for regulators and law enforcement across Asia-Pacific, as elsewhere. Insurers are paying close attention to the new data privacy rules being drafted in response to the increased risks. 

According to reviews, regional and global insurers with operations in the Asia Pacific region also are grappling with the issue of data sovereignty — which can be transmitted among jurisdictions — as the data privacy regulations vary across the region. More stringent data protection rules in Australia and Singapore also may create questions about the identity of countries in which insurers store their data. A subpoena issued by a government to an insurer to provide certain data requires knowledge of where it has been physically stored. Insurers also will need to identify new metrics and processes to monitor data security and compliance. 

Many insurers in the region will continue to enhance their data controls in the latter part of 2015, prompted primarily by new and stricter regulations. Asia-Pacific insurers must pay closer attention to the changing cyber security laws and focus more stringently on data security, network crime legislation and law enforcement. Singapore’s Personal Data Protection Act, for example, includes rules on the collection, use, disclosure and care of personal data. The law establishes penalties for breaches and a “Do Not Call” registry. 

Major developing cities like Jakarta, Indonesia, China, Tokyo, Japan, Thailand and Vietnam also are reviewing legislation and drafting bills or have set up government agencies and task forces to confront cybercrime. Insurers will need to review and adjust to consumer and distributor data privacy controls as regulations continue to evolve. 

Despite the thriving state of security and protection within the region, there are still issues of sovereignty. Cross border sales between branches and main companies also pose as a challenge with different regulations and bylaws that are needed for each country. The data that can be transmitted are crucial to both investments and risk managements. With the help of cloud-storing, companies should be cognizant on their information.