Insurance trade says FTC order threatens consumer security

Share this article:
Updated Monday, Dec. 29 at 8:47 p.m. EST

A new Federal Trade Commission (FTC) order requiring nine insurance companies to provide data relating to how they set premiums could place policyholders' personal information at risk, a leading insurance trade group said this week.

Under the Fair and Accurate Credit Transactions Act of 2003, the FTC is required to study the use of credit-based insurance scores -- similar to a credit rating -- and how they impact the availability and cost of homeowners' insurance. The scores let the insurance companies charge higher premiums to those deemed high risk, a 2007 FTC showed.

But the order drew flak Tuesday from the American Insurance Association (AIA), which contends that insurance companies now will be required to "provide a wide array of consumers' personal information" -- some of which they don't even collect -- thus raising privacy and security concerns.

"We are disappointed the FTC chose this route, despite the industry's good-faith efforts to work cooperatively to find a sensible, secure and cost-effective alternative to provide the data the FTC says it needs to conducts its study," said David Snyder, AIA vice president and assistant general counsel, in a statement. "The use of a 'compulsory process' does not allay our serious concerns about the handling and protection of massive amounts of consumer data."

Snyder said the insurance companies will be asked to turn over information, such as consumers' Social Security numbers and mortgage details, and are unsure what measures the FTC is taking to protect the data.

Evan Zullow, a staff attorney with the FTC, told SCMagazineUS.com on Monday that the agency is sensitive to privacy issues.

"We are attempting to set up procedures so that if individual firms would like, they can limit what directly is coming to us," he said. "We have a long history of dealing with very sensitive information and believe we have strong procedures in place to protect it."

Affected insurance firms include State Farm, Nationwide, Allstate and Liberty Mutual.


Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

ISSA tackles workforce gap with career lifecycle program

ISSA tackles workforce gap with career lifecycle program ...

On Thursday, the group launched its Cybersecurity Career Lifecycle (CSCL) program.

Amplification DDoS attacks most popular, according to Symantec

Amplification DDoS attacks most popular, according to Symantec

The company noted in a whitepaper released on Tuesday that Domain Name Server amplification attacks have increased 183 percent between January and August.

Court shutters NY co. selling security software with "no value"

A federal court shut down Pairsys at the request of the Federal Trade Commission.