Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · Oklahoma · Title 36 — Insurance

§36-678. Promulgation of rules — Violations.

404 words·~2 min read·/ok/title-36-insurance/36-678·

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

A. The Insurance Commissioner may promulgate any rules necessary to carry out the provisions of this section.
B. 1. The following exceptions shall apply to this act:
a. a licensee with less than Five Million Dollars
($5,000,000.00) in gross annual revenue, is exempt
from this act,
b. a licensee subject to the Health Insurance Portability
and Accountability Act, Pub. L. 104–191, 110 Stat.
1936, as amended, that has established and maintains
an information security program pursuant to such
statutes, rules, regulations, procedures, or
guidelines established thereunder, will be considered
to meet the requirements of Section 4 of this act,
provided that the licensee is compliant with and
submits a written statement to the Commissioner
certifying its compliance with the same,
c. a licensee subject to Title V of the federal Gramm-
Leach-Bliley Act of 1999 (15 U.S.C. Sections 6801-6809
and 6821-6827) that has established and maintains an
information security program pursuant to such,
statutes, rules, regulations, procedures, or
guidelines established thereunder, will be considered
to meet the requirements of Section 4 of this act,
provided that the licensee is compliant with and
submits a written statement to the Commissioner
certifying its compliance with the same, and
d. an employee, agent, representative, or designee of a
licensee, who is also a licensee, is exempt from this
act and shall not be required to develop their own
information security program to the extent that the
employee, agent, representative, or designee is
covered by the information security program of the
licensee.
2. If a licensee ceases to qualify for an exception, the licensee shall have one hundred eighty
(180)days to comply with the provisions of this act.
C. In the case of a violation of this act, a licensee may be penalized in accordance with any applicable sections of the Insurance Code, including, but not limited to, Section 908 of Title 36 of the Oklahoma Statutes, or any other provision providing for penalties that the licensee is subject to under the license or permit of the licensee. Nothing in this act shall be construed to impose any civil liability for any violation of this act or omission to act by the licensee or employees of the licensee.
D. The provisions of this act shall take precedence over any other state laws applicable to licensees for data security and the investigation of a cybersecurity event. Added by Laws 2024, c. 346, § 9, eff. July 1, 2024.
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.