Skip to main content

Five Questions for Investors in Insurtech

Decisions you make when founding and/or investing in an insurtech venture can dictate your regulatory obligations, tax liability, operational structure and, ultimately, profitability.

Here are five seemingly simple questions to ask when launching an insurtech venture (and do not miss question #3):

1. What will your venture be?

Determining how you want to operate and what insurtech product you’ll offer is one of your first key strategic decisions. Are you a producer? A captive? A managing general agent? A consultant? Your selection will dictate how you operate and the specific responsibilities and legal obligations applicable to you and your operations.

2. Where will you operate?

Whether you operate domestically or internationally, each state or country will require compliance with a distinct set of regulations and procurement of specific licenses. You need to be aware of the regulatory tripwires, how best to avoid them, and the fines and sanctions that often come with regulatory violations.

3. What are my obligations regarding protection of data and privacy?

Privacy by design is a critical consideration.  If you will be collecting confidential and/or personal data from customers, you must ensure compliance with the privacy laws of all jurisdictions in which you operate. You also must institute adequate systems and procedures to protect against cyberattacks, and respond to data breach incidents.     For investors, the answers to questions 1 and 2 will help to inform the level of due diligence -- and you should be kicking the tires of the security of the platform as well as the market strategy.   For founders, the answers to questions 1 and 2 will drive what you are legally required to protect and how that protection must be developed, disclosed, and what levels of detection and security you maintain on an operational basis.   Remember, if you are operating in New York, your platform will be required to comply with the New York Department of Financial Services Cybersecurity Rules.   Not familiar with them?   Check hereIf you intend to operate internationally, you should already be thinking about required compliance with the European Union's General Data Protection Regulation.  It won't be optional, or "nice to have."   And, it's complicated.

4. How can you maximize profitability of your business?

There often are opportunities to increase the profitability of your business by leveraging revenue streams allowed under the insurance regulatory framework. Strategic considerations during the product development phase — such as application of commissions and fees — can have a significant positive impact on your business plan and return on investment.

5. Who are the key players to connect to your venture?

Are there industry connections your entity needs as partners or advisors? (Check out or for the best industry knowledge.) What about connections to capital? As you meet with insurers, potential investors, or partners are your ideas protected? How do you avoid tying your hands by entering into exclusivity agreements? Connecting with key partners — in the right way — can optimize your product while guarding your intellectual property.

Whether you are a VC or startup, these key considerations point out the strategic advantages of bringing together business and legal thinking to insurtech product design.

For more information - /legal-insights/alerts/articletype/articleview/articleid/3984

Subscribe To Viewpoints


Cynthia J. Larose

Member / Co-Chair, Privacy & Cybersecurity Practice

Cynthia J. Larose is Chair of the firm's Privacy & Cybersecurity Practice, a Certified Information Privacy Professional-US (CIPP-US), and a Certified Information Privacy Professional-Europe (CIPP-E). She works with clients in various industries to develop comprehensive information security programs on the front end, and provides timely counsel when it becomes necessary to respond to a data breach.