The Insurance Regulatory and Development Authority of India issued revised Information and Cyber Security Guidelines, 2026 to strengthen cybersecurity frameworks across the insurance sector. The update replaces earlier 2023 guidelines in response to evolving cyber threats, industry feedback, and recommendations from IRDAI committees. The new guidelines establish minimum standards and governance mechanisms for regulated entities, aiming to enhance resilience against emerging risks. They apply broadly to insurers, foreign reinsurance branches, intermediaries such as brokers, corporate agents, web aggregators, TPAs, insurance repositories, and other stakeholders including the Insurance Information Bureau of India. The circular mandates strict compliance with the revised framework from the current financial year. Overall, the guidelines seek to improve risk management, governance practices, and preparedness of the insurance ecosystem in addressing cybersecurity challenges.
Insurance Regulatory and Development Authority of India
Ref No: IRDAUGA&HR/CIR/MISC/51/4/2026 Dated: 06th Apr, 2026
To,
All Insurers, Insurance Intermediaries and 116,
SUB: IRDAI Information and Cyber Security Guidelines, 2026
1. IRDAI vide Circular ref: IRDAUGA&HR/GDUMISC/88/04/2023 dated 24th Apr, 2023 has issued IRDAI Guidelines on Information and Cyber Security for Regulated Entitles.
2. In view of the evolving threat landscape, feedback received from the Industry & recommendations of various IRDAI committees, the revised Guidelines are hereby issued in order to enable the insurance industry to further strengthen their defenses as well as related governance mechanism to deal with emerging cyber threats.
3. The brief summary of the major changes in the guidelines are enclosed as Annexure — A.
4. The IRDAI Information and Cyber Security Guidelines, 2026 are attached as Annexure — B. These guidelines set out the minimum standards and governance mechanisms to be adopted by all Regulated Entities.
5. All Insurers including FRBs, Insurance Intermediaries covering Brokers, Corporate Agents, Web Aggregators, TPAs, IMFs, Insurance Repositories, ISNP, Corporate Surveyors, MISPs, CSCs and the Insurance Information Bureau of India (IIB) shall strictly adhere to the said guidelines and ensure compliance from the current financial year.
(A. R. Nithiyanantham)
Executive Director (GA & HR)
