What we build to
Our claims work is anchored to the rules a market-conduct examiner actually applies:
- NAIC Unfair Claims Settlement Practices Act (UCSPA)
- The baseline standard for handling claims fairly — the core of most fair-claims rules.
- State Department of Insurance (DOI) rules
- Each state regulator's own claims-handling requirements.
- Bad-faith doctrine
- The legal principle that penalizes insurers for handling a claim unreasonably or unfairly.
- Prompt-payment statutes
- State deadlines for paying — or formally responding to — a claim.
- Unfair or Deceptive Acts & Practices (UDAP)
- Bars unfair or deceptive conduct in how claims are handled and communicated.
- Gramm–Leach–Bliley Act (GLBA)
- Protects the privacy of consumers' personal financial information.
- Fraud-detection fairness
- Ensures fraud screening flags risk without unfairly singling people out.
- NAIC AI Model Bulletin
- Tells insurers how they're expected to govern the AI they use in decisions — and lets regulators inspect it. Now adopted across more than 20 states, plus DC.
- NYDFS Circular Letter No. 7 (2024)
- New York's guidance on using AI and external data in insurance without unfair discrimination.
- Colorado SB 21-169
- Colorado's law barring unfair discrimination from insurers' use of data and algorithms.
New to these terms? Several are defined on the Glossary.
Where our compliance program stands
We'd rather be precise than impressive:
- SOC 2: a Type I engagement is planned, with Type II to follow on a 12–18 month arc. We are not SOC 2 certified today, and we won't say otherwise.
- Design partners get earned trust earlier — through a documented evidence package and a joint security review — rather than waiting on certification.