For insurers, the invoice mandates the event of a complete written info safety program tailor-made to the scale, complexity, and danger profile of the group. Every licensee should conduct periodic danger assessments, designate accountable personnel, and implement administrative, technical, and bodily safeguards to guard personal info. Insurers domiciled in Oklahoma are required to submit an annual compliance certification to the Insurance coverage Commissioner by April 15 and retain supporting information for 5 years.
