When do I have to submit my written statement of compliance?

Starting in 2022, all insurers who are required to certify their information security program must do so by February 15 of each year. If you were an insurer who was previously exempt due to having fewer than twenty-five employees (including independent contractors) but increase your number of employees to twenty-five or more employees, you have 180 days to certify that your information security program is in compliance with Michigan's requirements.