When the era of big data comes, new technologies related to data collection and data analysis develop rapidly. The development of these technologies drives the advancement of various industries variously and changes the social pattern and daily life of human beings entirely. Although industries create unlimited possibilities and value through collecting, processing, and utilizing personal data in the era of big data, at the meantime, these industries also bring incalculable impacts and risks to personal data protection due to the characteristics of big data. These potential impacts and risks raise the vital issue in balancing the utilization and the protection of personal data. The nature of insurance involves a large amount of personal data collecting, processing, and utilizing, so the insurance industry always has a great demand for personal data all the time, no matter it's in customer targeting, insurance underwriting, or insurance claims. Therefore, when the insurance industry faces the changes brought about by the era of big data, it is worth discussing how the insurance industry can take personal data protection into account while applying and developing new technologies. Considering the reason above, this article takes applications and development of the insurance industry as the starting point for the discussion and analyzes the critical issues of the insurance industry's utilization of large-scale personal data banks.Take Taiwan's National Health Insurance Research Databases, deceased person's personal data application platform, article 177-2 of the Insurance Act for examples, discussing and analyzing the feasibility and constitutionality of the insurance industry's utilization. By re-examining Taiwan’s traditional theory of information privacy, judicial opinions, legal judgments, and authorities’ opinions, along with reference to foreign legislations, this article proposes several methods to the issue questions and directions for future development. In conclusion, this article believes that the traditional theory of information privacy is no longer sufficient to meet the needs of personal data protection in the era of big data, so revision theory to information privacy is proposed and used in the aforementioned issues. When considering the use of Taiwan's National Health Insurance Research Databases, deceased person's personal data application platform, and the feasibility of article 177-2 of the Insurance Act in the future, its necessary to ensure the data subject's autonomy to personal data, the degree of identification, the elimination of insurance discrimination, the protection of surviving family members, etc. Regarding establishing a better system for personal data protection, it's necessary to develop Data Protection Impact Assessment and a feedback mechanism for the use of personal data, the government should also set up a particular agency for personal data protection, and the insurance industry should hire a Data Protection Officer. In this way, the constitutional right to information privacy and personal data protection can be insured.