At Star Health Insurance, safeguarding our customers’ information is more than just a priority—it is a responsibility we uphold with utmost seriousness. Trust forms the foundation of our relationship with you, and we are resolute in our commitment to continuously strengthen and refine our security measures.
Recently, we encountered a cyber incident caused by an unknown third party that demanded immediate attention. Guided by industry-leading experts, we acted decisively to ensure our services remained fully operational and uninterrupted, allowing our customers to continue interacting with us seamlessly.
Responding with Determination and Care
This incident was addressed with the highest level of seriousness across our organization. We thoroughly evaluated the scope of the breach and promptly initiated actions recommended by various experts. As India's largest retail health insurance provider, our response went beyond immediate measures; we were cognizant of our duty to lead by example in every decision we made.
In close collaboration with government, police, and regulatory bodies, we pursued a comprehensive investigation, aiming not only to address the immediate impact but to further fortify our information technology security systems. Protecting our customers, partners, and the organisation itself was, and continues to be, our guiding principle.
Our Strengthened Cybersecurity Measures
Based on the recommendations of our experts, we have implemented a robust security enhancement plan that exceeds the certifications and controls mandated by the IRDAI, which we already comply with. Key measures include:
- Firewall Upgrades: Enhanced firewall systems equipped with advanced intrusion detection and prevention capabilities.
- Mandatory Multi-factor Authentication: An essential layer of security required for all users across our network.
- Frequent Security Audits: Regular, in-depth audits to proactively identify and address vulnerabilities.
- Cybersecurity Awareness Program: Advanced employee training programs to equip our team with cutting-edge security protocols, including but not limited to threat mitigation techniques, intrusion detection systems, and zero-trust architecture.
- End-to-End Encryption: Ensuring that all sensitive data remains encrypted both at rest and in transit.
- Revised Incident Response Plan: Strengthening our approach to enable swift, effective responses to future threats.
Our Pledge to Transparency and Customer Focus
Our commitment goes beyond technical measures. We are dedicated to transparent communication with all stakeholders, including customers, partners, government and regulatory authorities. Our customer-first approach is unwavering—we are here to provide support, answer questions, and address any concerns with patience and care.
As part of our ongoing commitment to innovation, we are investing in advanced technologies and fostering a security-aware culture within our team. Together, our leadership and collective resilience ensure that Star Health Insurance stands as a model of integrity and reliability.
Additional Measures for Our Customers’ Peace of Mind
To further protect and reassure our customers, we have introduced several security enhancements:
- New Policy Numbers: Enhanced security with fresh policy numbers for relevant customers.
- Data Privacy Drive: An educational initiative to empower our customers with knowledge about cybersecurity threats and protection strategies.
- Enhanced Claims Due Diligence: Strengthened procedures to ensure secure and efficient claim processing.
In tandem, we are working on integrating cutting-edge encryption technologies and AI-driven solutions that will continue to position us at the forefront of cybersecurity in the insurance industry.
Staying Vigilant Together
While we continue to fortify our systems, we encourage our customers to join us in fostering a secure environment by adopting these practices:
Password Security
- Regularly update your passwords and never share them with anyone.
- Ensure your passwords are strong, using a mix of uppercase and lowercase letters, numbers, and symbols.
Device Security
- Do not leave electronic devices unlocked or unattended.
Email Verification
- Verify email senders. If you receive an email that appears to be from us, check that the sender’s domain name includes @starhealth.in.
Link Safety
- Avoid clicking on unfamiliar links, especially those from third parties pretending to be Star Health or its agents. These could be phishing attempts. Ensure the URL is secure by checking for https:// followed by starhealth.in.
Error Detection
- Be cautious of typographical, grammatical, or spelling errors in communications, as these can indicate scams or fraud.
Sensitive Information
- STAR Health will never ask for sensitive information such as your password, OTP (One-Time Password), or personal identification number (PIN).
OTP Security
- Keep OTPs private and never share them with anyone.
Contact Information
- Ensure your contact details are current in the Star Health app and inform us immediately of any changes.
Reporting Suspicious Communications
- Immediately contact us if you receive or interact with a suspicious communication that appears to be from us.
Our Enduring Commitment to Security and Customer Trust
At Star Health, our promise to prioritise your security is unwavering. We deeply appreciate the trust you place in us and remain dedicated to a customer-centric approach that values safety, transparency, and respect.
For assistance, please contact us at support@starhealth.in or call 044 6900 6910. Thank you for standing with us in our mission to meet our commitments and for your continued trust.
