The Hartford has a privacy policy regarding the treatment of nonpublic personal information of its customers, including both claimants and policyholders. Federal and State laws prohibit The Hartford from disclosing nonpublic information to nonaffiliated third parties unless otherwise permitted or required by law. Nonpublic personal information is generally information that personally identified an individual and which is not otherwise available to the public. Nonpublic personal information includes financial and health information of such individuals.
Acceptance of any legal assignment by counsel is conditioned and subject to agreement of counsel to properly and adequately protect such nonpublic information from disclosure, with such agreement surviving termination of the representation or relationship with The Hartford.
Counsel is required to:
- Comply with the >>>CLICK HERE>>> Common Security Controls and with the information protection requirements which will be set forth in the Information Security Safeguards document provided to the firm as part of the welcome package, during onboarding process. The Hartford may assess your firm as described under the “Security Assessment” section of the Information Security Safeguards. The Law Firm will have 30 days from receipt of the welcome package to advise The Hartford (by contacting your relationship manager) of the Firm’s inability to comply with any part of the Information Security Safeguards.
- Protect the confidentiality of all nonpublic personal information that may be obtained by counsel from or on behalf of The Hartford and its insureds, and shall not disclose such information outside the law firm except as required to perform legal services or as permitted or required by state or federal law.
- Restrict access to all nonpublic personal information obtained from or on behalf of The Hartford and its insureds to those individuals in the law firm that require such information in order to the perform the requested legal services.
- Limit use of all nonpublic personal information for purposes authorized by The Hartford or necessary in order to perform the requested legal services.
- Assume full and complete responsibility for all claims, demands, losses, costs, expenses (including reasonable attorney’s fees and costs), obligations, liabilities, fines, penalties and other damages of any and all kinds against The Hartford arising from or related to an actual or alleged breach by counsel or the law firm of these obligations of confidentiality and non-disclosure, or breach of the Common Security Controls or Information Security Safeguards, except for breaches resulting from counsel or the law firm’s acts or omissions taken at the requires or under the direction of The Hartford.
- Maintain practice and procedures to protect the confidentiality of all nonpublic personal information that counsel or the law firm obtains from or on behalf of The Hartford and its insureds. Allow and facilitate The Hartford to audit counsel and the law firm’s practices and procedures for protection of such information.
- Notify The Hartford, as promptly as practicable, but no later than within 24 hours or sooner if required by applicable law, upon discovery of any breach of the security or confidentiality of the Information (“Breach”) and provide The Hartford all necessary information to enable it to evaluate its potential rights, obligations, remedies, and security precautions, as soon as you can collect this information or it otherwise becomes available, and upon The Hartford’s request. Counsel shall take immediate action upon discovery of any Breach to investigate and to communicate the results of the investigation to The Hartford and to identify, prevent, and mitigate the effects of the Breach.”
Counsel shall be responsible for the proper disposal of business records containing sensitive, confidential and/or proprietary information in a timely and consistent manner. Any confidential and/or proprietary information that needs to be disposed of should be shredded.