FIAR 2018: GDPR Workshop: GDPR should be seen as an opportunity for optimizing our business, not as a threat

Are the insurers and the brokers ready for the GDPR challenge? What effects will GDPR have on the Romanian insurance industry and on consumers? What are the main issues in implementing GDPR? These were just a few of the topics debated during the GDPR Workshop taking place at FIAR 2018.

Cristian JURA - University Professor & State Secretary
  • The final GDPR countdown began: there are less than 10 days left until the implementation of the directive;
  • 25 May is the beginning of a new travel. Nobody knows how the implementation should look. We have a legislation, but nobody is 100% sure about the way this legislation should be applied.
  • Romanians are, in general dissatisfied. Whenever they are dissatisfied, Romanians make complaints. We now have a new institution where complaints can be made. Thus, the implementation of GDPR becomes even more important.
Gerke WITTEVEEN - Vicepresident, UNSAR & CFO, NN Asigurari de Viata
  • Consumers do not know what GDPR is, exactly, they don't realise that this new legislation is for their benefit.
  • Any law that must be implemented brings new challenges, not only GDPR.
  • GDPR in the insurance domain is very important - because we, as insurers, work with our clients' data. The clients' data are in the center of our activity..
  • GDPR is a legislation fit to the new digital world - GDPR cannot exist without digitalization.
  • All the bureaucracy built around GDPR helps neither the consumer, nor the insurance industry.
  • GDPR means that any client must, in any moment, know what happens to his/ her personal data. This is the essence of GDPR - clients have the right to know what happens with their data once they gave them.
  • GDPR brings a novelty: the right to be forgotten.
  • The new legislation is built with the consumer in mind: we, the insurers, must increase the client's trust in the industry and GDPR helps us do this.
  • Insurance is not one of the most trusty domains, so GDPR will help increase the customers' trust in insurance. By protecting the clients' interests, we build their trust.
  • There is the risk that the client feels more burdened by documents, instead of more protected - but we don't want to scare the client away. If we don't respect the requirements and we burden the client, we can lose him/ her. This is the real challenge of GDPR.
Ioan DUMITRASCU - Partner, PeliFilip
  • The GDPR legislation brings very high sanctions. The sanctions cost more than the conformation costs.
  • Unlike current legislation, GDPR also requires an impact study - the evaluation of the impact on data protection (DPIA - Data protection impact assessments).
  • The GDPR mandates a DPIA be conducted where data processing "is likely to result in a high risk to the rights and freedoms of natural persons".
  • In insurance, an impact study would be necessary: it should have been made before 25 May, but it does not seem to have been a priority for the industry.
  • We are waiting for the authorities' clarifications regarding the DPIA, because the legislation mentions that it will be specified when DPIA should be optional and when it is mandatory.
  • There are companies which haven't even thought about conducting a DPIA.
  • DPIA is a continuous process and it is conducted after a preliminary analysis which shows whether it should be conducted.
Dan MIHAI - Partner, Jinaru, Mihai & Notingher, Law Offices &Tax Advisors
  • According to our analyses, the GDPR conformation level in many industries in Romania is rather good.
  • Also, according to our analyses, the same thing is true when it comes to the transparency of communicated information.
  • The most sensitive subject remains the protection and safe storage of data: old systems, vulnerable to all sorts of information leakage. Many companies don;t know how to protect their data. Many companies don't know for how long should data be kept - this is a critical aspect.
  • The reasons for which companies are implementing GDPR: the fear of sanctions, the requirements coming from their international groups, or the requests coming from their partners.
  • The three reasons mentioned above also indicate how the companies apply GDPR. In most cases, companies take the "Compliance driven approach", meaning "we need to implement GDPR in order not to get sanctions". However, the companies which apply the "Business driven approach" have much to gain, because GDPR is an opportunity for companies to revise and improve certain processes.
  • Although inspections from authorities are to be expected, the biggest risk comes from consumers, who will band together and will make collective complaints to various commercial companies.
Tudor GALOS - Senior Digital Transformation Consultant
  • GDPR can be seen as an opportunity, not as a threat.
  • Everybody only sees the sanctions: GDPR can also help optimizing the business.
  • It is mandatory for companies to secure their data infrastructure.
  • Personal data means any data that makes a person identifiable: a CASCO policy number makes a person identifiable, which means it is personal dataa, the online behaviour of a person is personal data, the car number is personal data.

Maria BOGHIAN - Senior Consultant, ASIS Software International
  • GDPR is an opportunity and it will make our lives easier.
  • GDPR helps us reanalyze and reorganize our business, making it simpler.
  • We will have bigger storage spaces and our data willbe better protected. GDPR will help us "sleep more peacefully".

Related articles

The 9 GDPR checkpoints according InsuranceEurope

GDPR is around the corner, InsuranceEurope says, drawing attention to the fact that it is the time for final checks by insurers. The association has publi9shed on its own website an overview of insurers' obligations under the General Data Protection Regulation.


Andreas BRANDSTETTER named President of Insurance Europe

Andreas BRANDSTETTER, the CEO and Chairman of Austria's UNIQA Insurance Group, has been elected President of Insurance Europe, the European insurance and reinsurance federation, for a term of three years. He will give a keynote speech today, 24 May, at the federation's 10th International Conference.


VIDEO INTERVIEW: Matti LEPPALA Secretary General and CEO PensionsEurope Chair of OPSG, EIOPA

Demographic change is challenging for all European countries, especially for the CEE countries. It will be a very huge challenge for the public finances and for the public pensions to adapt and survive this change. Public pensions systems were much reformed to insure sustainability, but the benefits are obviously less generous, so adequacy remains a big issue. Saving for retirement becomes a very important necessity for EU citizens. Increasing the coverage in pension savings must be a priority for each state, Matti LEPPALA, Secretary General and CEO, PensionsEurope, Chair of OPSG, EIOPA stated for XPRIMM.TV.




FIAR 2018 - Motor Insurance Conference (I & II): with the right use of technoloogy, clients' expectations and MTPL insurer's profitability may go hand in hand

The first and second parts of the Motor Insurance Conference taking place at FIAR 2018 focused on the new MTPL Law in Romania and the way it changed the market after almost 1 year of implementation, as well as the consequences of the new legislative framework and the operational challenges this brings, but also the most suitable solutions for balancing regulation, insurers' appetites and customer expectations on the MTPL market.


FIAR 2018: Brokers' Conference (II): digitization and technology are needed for efficient operations, but will not replace the human touch in consultancy

The second part of the Brokers' Conference taking place at FIAR 2018 analyzed the impact of European Union's legislative overhaul - IDD & GDPR -, also bringing into debate study cases and real-life scenarios of what the brokers face on the market, and, last but not least, trying to see whether digitization and InsurTech could truly lead to disintermediation.


Brokers' Conference (I): Until 1 July, when we will see the final version of the IDD, we cannot say for certain if we are ready and how ready we actually are

The second day of debates at FIAR 2018 started with The Brokers' Conference, the event dedicated to the mediation market in Romania and in the CEE region. The first part of the conference focused on a market overview and also analyzed the challenges of the IDD implementation, as well as the potential impact of IPID for MTPL and PAD.


INSURANCE IN A DIGITAL WORLD Conference: capacity, consistency and culture are the three key success factors in the digital transformation of insurers

The INSURANCE IN A DIGITAL WORLD Conference, taking place at FIAR 2018, brought into debate the impact of digitization on the insurance industry. The first part of the conference focused on risks & opportunities of digitalization for both industry and consumers, as well as case studies and best practices: BigData & IoT, BlockChain, Peer-to-Peer, and AI.


Insurance Market Trends Conference (II): GDPR and IDD, European regulations affecting all business lines, as well as the compliance with the Solvency II framework, are the main challenges ahead for the Romanian market

During the second part of the Insurance Market Trends Conference, taking place at FIAR 2018, the debates focused on the current situation in Romania and the sustainable development for a growing and stable insurance market, as well as the challenges and opportunities for the local insurers.


See all