Information Security Policy

Order yours today!

​​It’s the law that agencies have a security plan per Virginia Statute 38.2-613.2.  The statute requires that each insurance institution, agent, and insurance-support organization will have a written information security program that includes administrative, technical, and physical safeguards for the protection of policy information.


Don’t get overwhelmed with the technical jargon of the information required and discard complying with this code.  IIAV has a solution for you with their information security policy template developed specifically for IIAV member agencies at no cost.  This includes an addendum for PCI compliance requirements, as a HIPPA Rule Addendum for those who need it.


Click here​ or email and request your Insurance Agency Information Security Policy template.