Back to top

Cybersecurity for suppliers


Cybersecurity at Allstate

At Allstate, we take cybersecurity seriously. That's why we have best-in-class cybersecurity controls to help protect the confidentiality, integrity and availability of our information. Protecting our information is vital for preserving customer trust, ensuring services are available for our customers, meeting legal and regulatory obligations and delivering value to shareholders.

Recommendations for suppliers

All Allstate suppliers are required to have suitable cybersecurity protections. That means ensuring that you and any partners you use are compliant with Allstate's information security policies and all applicable cybersecurity laws, regulations and best practices. We also require our third parties to educate their workforce about cybersecurity.

Reporting security incidents

Allstate suppliers are required to report known or suspected security incidents immediately upon detection to

Cybersecurity resources

If you need support developing a cybersecurity framework, the Federal Trade Commission offers the following resources:

The National Institute of Standards and Technology (NIST) Cybersecurity Framework enables businesses to understand and reduce their cybersecurity risk. NIST also has a Small Business Cybersecurity Corner with additional resources.

Important Notice: Some of the links shown on this site are linked to third-party websites. These links are provided only as a convenience to you. Allstate does not endorse these websites or guarantee the quality, accuracy or truthfulness of any content, information or services accessed through these websites. Whenever you leave the Allstate website, we encourage you to read the Privacy Statements of each and every website you visit. The Allstate Privacy Statement only applies to this website.
ECC Monitor: OK