Our Information Security Program includes a risk assessment to accomplish the following objectives:
Identify reasonably foreseeable internal or external threats that could result in unauthorized disclosure, misuse, alteration, or destruction of customer information or customer information systems. (Customer information systems are the electronic or physical methods used to access, collect, store, use, transmit, protect, or dispose of customer information);
We assess the likelihood and potential damage of these threats, taking into consideration the sensitivity of customer information;
We practice certain policies and procedures as they relate to customer information and other related personal information collected, maintained, and disclosed in connection with the insurance policies we issue. We have in place certain systems and other safeguards for the purpose of controlling risks.