One of the questions on Coalition's application asks whether the named insured collects Personally Identifiable Information (PII) or Protected Health Information (PHI) from its customers. Often times, there are significant differences between how state, federal, and foreign governments define PII and PHI.
For the purposes of our policy, we define PII and PHI as any information about an individual that is required by any local, state, federal, or foreign law or regulation to be protected from unauthorized access, acquisition, or public disclosure.
We've deliberately used a broad definition of PII to cover all of the different definitions used by state, federal, and foreign law. This means that Coalition's policy responds data breaches or security failures and arising claims/regulatory actions brought under GDPR, CCPA, other state breach laws, and so on.
If you have any questions, please don't hesitate to contact us.