Cyber risks insurance
Cyber risks and exposures
- Hackers, rogue employees and third party outsourcers can be the cause of cyber events; actors that are out of your control;
- Cyber security and data protection issues are often in the media with cyber events increasingly causing damage to company brands;
- Europe‘s new General Data Protection Regulation has now been agreed and will come into force in 2018. It will include the requirement to notify regulators and victims of a breach. The regulation will also allow for fines of up to 4% of global turnover to be imposed in the event of a serious breach;
- Not having a crisis management response in place in advance of a cyber event can result in expensive and chaotic responses to privacy and security breaches.
What risks are insured?
Breach network security and privacy liability
- Any ensuing liabilities in the event of a network security or privacy breach.
First party breach expenses
- Detection, repair and restoration of data and networks following a breach of network security or privacy.
- Costs to comply with requirements to notify customers and offer credit monitoring services.
- Cost of hiring a crisis management team in the event of breach of network security or privacy.
Business interruption/increased costs of working
- Loss of income (net profit) and increased costs of working due to a breach of network security or operational error
Regulatory investigations and fines
- Cost of handling and preparing the response to a data or privacy regulatory investigation, including PCI card brand fines and penalties.
Cyber extortion
- Crisis management support to handle the ranson process and pay the ransom, if unavoidable.
Risk management services
The exclusive insurance product provides clients with a menu of services that focus on different areas of cyber risks. Clients can choose the service they believe will benefit their current cyber risk management profile. This will be funded by a risk management budget provided by insurers.
Why you should consider purchasing this insurance?
- It is the duty of Directors to shareholders to have a measured response to crisis situations;
- Provides cyber risk management solutions;
- Provides access to a crisis management team avoiding distressed purchasing of these services;
- Being ready for a cyber event will help mitigate damage to your reputation;
- Having specialist expertise to help manage you through the situation will avoid to provide a successful notification to regulators;
- Protection for cyber risks does not exist in other insurance policies.
Example cyber incidents and cyber insurance response
Incident | Impact | Insurance coverage |
Stolen laptop | Confidential information released | First party breach expenses and potential damages for liabilities to client |
Hacker enrypts data and holds it at ransom | Data locked, operations halted | First party breach expenses and cyber extortion response |
Social engineering attaches malware | Online data deleted and IT system unbootable | First party breach expenses and business interruption costs |