Adopting new technology can make it easier for your agents to do their jobs, provide 24/7 self-service to your clients, and differentiate your agency from the rest of the field. That said, it’s important to first evaluate whether or not using third-party tech vendors could put your client’s data at risk.
Today’s insurance buyers are used to having answers and options literally at their fingertips. Implementing technology solutions can help customers get service when they want it how they want it. It’s easy to be enticed by the “next best thing” offered by vendors at insurance industry tech events. The right tech partners are able to help clients pay their bills, download proof of insurance, get requotes, and review their policies without leaving the house or making a phone call. While investing in technology demonstrates that you value the customer experience, the solution must meet your needs without exposing client data.
A 2019 survey by Parks Associates revealed that 79% of consumers are concerned about data security and privacy issues. Before you sign a contract with a new tech partner, make sure you understand how the company will safeguard data—and your agency’s reputation.
Here are twelve questions you should ask a tech vendor before signing a contract.
Will the vendor use an application programming interface (API), cloud-based software as a service (SaaS) interface, or will the solution be fully integrated? Be sure you (and your IT staff, if you have one) understand how the information will flow between your internal system and the vendors. If it’s not clear how the solution communicates and shares data, it may be challenging to protect that data.
Confirm that your agency is only sharing the precise information that each vendor needs to do its work. Don’t share non-essential data with vendors, especially personally identifiable, financial, and proprietary information.
You can’t keep something safe if you don’t know where it is. Will there be redundancies and frequent backups?
Like monitoring your credit or home security, monitoring customer data helps stay ahead of potential threats.
The vendor should regularly test its cybersecurity, conducting spot checks and full mock attacks to assess how its system and support staff respond.
Trustworthy, third-party security audits of the specific application (such as an SOC 2 audit) can provide you with important peace of mind.
The tech vendor you partner with should have full-time workers solely dedicated to security. The more people who work on security full-time, the safer your data is likely to be.
There should be explicit limits to who has access to your agency and client data.
Both parties must be clear about—and comfortable with—who owns the data you share (now and in the future).
The insurance industry is highly regulated, so any vendor should have in-depth knowledge and understanding of the specific compliance issues your agency regularly faces.
Clients value transparency. They want to know how their data is being collected, used, and protected. If appropriate, clients should receive regular security updates and a method for opting out.
If you must pull out of a contract, make sure you understand how (and in which format) you’ll receive your data. Can they provide an API or an export so you can quickly receive your data? Always have an exit strategy available.
Technology can make your job easier and improve your ability to serve your clients when and where they choose. But partnering with an outside vendor and sharing confidential data with a third party carries risk. Understanding what happens to your data is critical for your insurance agency and your clients.
Thanks for reading our educational resource! Any above reference to a specific company, method, or product is meant for educational purposes only and is not specifically endorsed by Pie.
