Nos derniers articles

Insurance Europe advocates for simplifying EU digital regulations, including the Cybersecurity Act and upcoming digital omnibus initiatives, to alleviate compliance burdens. The organization seeks to reduce overlaps and duplications in cybersecurity reporting, particularly under DORA, GDPR, and other horizontal legislations. They propose aligning cyber reporting mechanisms and centralizing notifications to multiple national agencies. Additionally, Insurance Europe supports stakeholder involvement in cybersecurity certification development, emphasizing that certification should remain voluntary. Concerns have been raised regarding the European Cybersecurity Certification Scheme for Cloud Services (EUCS), specifically regarding a lack of transparency and the inclusion of sovereignty requirements that could limit service provider choice and increase costs for insurers.

The main vulnerability in data protection is ineffective risk management, often subjective and superficial. GDPR outlines what to achieve but not how, leading to inconsistent compliance. This paper advocates a quantitative approach for data protection, emphasizing analytics, quantitative risk analysis, and expert opinion calibration to enhance impact assessments.