IAIS published an issues paper that examines the use of big data analytics in insurance and presents supervisory considerations for regulators in various IAIS jurisdictions. The paper notes that increasing digitization of insurance provides tremendous opportunities for the sector; however, this rapid innovation could unintentionally create risks of poor outcomes for policyholders and increased vulnerabilities for the sector. Accordingly, supervisors must remain vigilant of, and consider appropriate and proportionate responses to, such risks.
The paper highlights a number of potential benefits and risks associated with the use of big data analytics across the insurance product life cycle. This information can help supervisors to develop appropriate and proportionate responses to rapid advancements in big data analytics enabling technologies and applications in a manner that ultimately promotes and encourages the consistent delivery of fair outcomes to customers. The paper focuses on the use of algorithms and advanced analytics capabilities by insurers to make decisions based on patterns, trends, and linkages and the availability to insurers of new data sources, collectively referred to as “big data analytics.” To help understand the potential benefits and risks of the use of big data analytics by insurers, the paper considers the new ways in which insurers are able to collect, process, and use data across various stages of the insurance product lifecycle, namely product design, marketing, sales and distribution, pricing and underwriting and claims handling. Finally, the paper highlights potential supervisory considerations on the use of big data analytics in insurance to ensure the fair treatment of customers as described in Insurance Core Principles (ICPs) 18 and 19.
The paper discusses the following key issues for insurance supervisors to consider:
- Opportunities may exist for supervisors to obtain insights from data collected and shared by insurers to assess the effectiveness of advice and suitability of products offered to customers. Supervisors could compare these insights with other metrics, such as complaints rates or product related key performance indicators to assess the effectiveness of advice and product suitability after products have been sold.
- As a starting point to address concerns about the increasing complexity of algorithms and potential lack of transparency in their development and use, supervisors may consider the applicability of existing requirements to the use of algorithms, including general principles relating to the management of risks taken by the insurer and the fair treatment of customers.
- Supervisors may consider the applicability of existing requirements to the use of algorithms, including general principles relating to the management of risks taken by the insurer and the fair treatment of customers. Additional issues that might require supervisory consideration in this respect include defining appropriate governance principles for the use of algorithms; focusing on measures implemented by insurers to ensure error and bias-free programming of algorithms to the extent reasonably possible; and reviewing the reliability of the algorithm, the accuracy and relevance of the specific data sets being used, and their correlation with the specific customer outcomes that are intended to be achieved.
- Third parties are often also used to provide ongoing support for various technical operational elements such as cloud services or other platforms, the design of algorithms, and provision or sourcing of large volumes of data not previously available to insurers. Supervisors may need to consider how insurers manage potential customer risks related to data sharing with these third parties, specifically in light of ICP 19.12. Supervisors may also consider the appropriateness of requiring insurers to extend their policies and procedures on the use of big data analytics to third party providers as part of their general governance arrangements for outsourcing where applicable. More active supervisory coordination and cooperation within and beyond the jurisdiction or region may be necessary to facilitate information exchange and to strengthen supervisory oversight in this regard.
- Supervisors should consider the steps taken by insurers to obtain the necessary consent to collect and use these types of data for specific purposes in a manner consistent with the fair treatment of customers. It would be useful for supervisors to collaborate with relevant data protection agencies, other consumer protection forums, and industry bodies in their respective jurisdictions to determine appropriate ways to mitigate potential customer risks arising from the use of big data analytics for insurance purposes. Developments relating to data and consumer protection frameworks globally may also provide helpful insights in this regard.
Keywords: International, Insurance, Big Data, Fintech, Suptech, Regtech, Artificial Intelligence, Machine Learning, Cloud Computing, Conduct Risk
Previous ArticleFSB Reviews Implementation of OTC Derivatives Reforms in Mexico
The European Banking Authority (EBA) launched the 2023 European Union (EU)-wide stress test, published annual reports on minimum requirement for own funds and eligible liabilities (MREL) and high earners with data as of December 2021.
The European Banking Authority (EBA) proposed implementing technical standards on the interest rate risk in the banking book (IRRBB) reporting requirements, with the comment period ending on May 02, 2023.
The U.S. Federal Reserve Board (FED) set out details of the pilot climate scenario analysis exercise to be conducted among the six largest U.S. bank holding companies.
The Board of Governors of the Federal Reserve System (FED) adopted the final rule on Adjustable Interest Rate (LIBOR) Act.
The European Central Bank (ECB) published an updated list of supervised entities, a report on the supervision of less significant institutions (LSIs), a statement on macro-prudential policy.
The Hong Kong Monetary Authority (HKMA) published a circular on the prudential treatment of crypto-asset exposures, an update on the status of transition to new interest rate benchmarks.
The European Commission (EC) adopted the standards addressing supervisory reporting of risk concentrations and intra-group transactions, benchmarking of internal approaches, and authorization of credit institutions.
The China Banking and Insurance Regulatory Commission (CBIRC) issued rules to manage the risk of off-balance sheet business of commercial banks and rules on corporate governance of financial institutions.
The Hong Kong Monetary Authority (HKMA) made announcements to address sustainability issues in the financial sector.
The European Banking Authority (EBA) published regulatory standards on identification of a group of connected clients (GCC) as well as updated the lists of identified financial conglomerates.