Cyber and data risks insurance is designed to support and protect your business if it experiences a data breach or is the subject of an attack by a malicious hacker that affects its computer systems.
Cyber and data risks insurance is designed to support and protect your business if it experiences a data breach or is the subject of an attack by a malicious hacker that affects its computer systems.
Is your business at risk?
Does your business:
hold sensitive customer details? Such as name, address, date of birth or bank account details.
use computer systems to conduct your business?
have a website?
use online payment and/or is subject to a payment card industry (PCI) merchant services agreement?
If you answered yes to 1 or more of the above questions then your business could be vulnerable to a data breech or loss of vital business services.
What types of protection to my business does a Cyber and Data insurance policy provide?
Listed below are some of the costs/benefits this policy could protect your business against:
Ransomware - Cyber extortion Protection if a hacker tries to hold your business to ransom by covering the ransom you have paid, as well as the services of a leading risk consultancy firm to help manage the situation.
Breach costs If you suffer a data breach (electronic or otherwise) the policy will offer practical support including forensic investigations, legal advice, notifying customers or regulators, and offering support such as credit monitoring to affected customers.
Crisis containment If you suffer a data breach, prompt, confident communication is critical to help minimise the damage caused to your businesses reputation. In our cyber and data insurance policy we include cover crisis containment cover with a leading public relations firm who can provide expert support, in terms of developing communication strategies to running a 24/7 crisis press office.
Cyber business interruption Provides compensation for loss of income (including where caused by damage to your reputation), if a hacker targets your system and prevents your business from earning.
Hacker damage Provides cover for the reimbursement of costs of repair, restoration or replacement if a hacker causes damage to your company website(s), programmes or electronic data.
Privacy protection The policy will offer cover to defend and settle claims made against your business for failing to keep customers personal data secure. This includes the costs associated with regulatory investigations and settling of civil penalties levied by the regulators where allowed.
Multimedia liability If you mistakenly infringe someones copyright by using a picture online - for example you inadvertently libel a 3rd party in an email or other electronic communication. The policy will provide protection against this.
Optional Covers
Cyber crime Cover for direct financial loss (theft of money, property or digital assets) following an external hack into your businesses computer network.
Telephone hacking Covers the cost of unauthorised calls made by an external hacker following a breach of your company's computer network - Online calls VoiP, Skype etc or traditional fixed lines.
Examples From The News
HSBC has said some of its US customers' bank accounts were hacked in October.
HSBC has said some of its US customers' bank accounts were hacked in October.
The lender said that the perpetrators may have accessed information including account numbers and balances, statement and transaction histories and payee details, as well as users' names, addresses and dates of birth.
Morrisons has been found liable for the actions of a former member of its staff
Morrisons has been found liable for the actions of a former member of its staff who stole the data of thousands of employees and posted it online.
Workers brought a claim against the company after employee Andrew Skelton stole the data, including salary and bank details, of nearly 100,000 staff.
The High Court ruling now allows those affected to claim compensation for the "upset and distress" caused. The case is the first data leak class action in the UK.
I outsource my payment and card processing. Do I have payment card exposures?
Yes, according to the Payment Card Industry (PCI) Compliance Guide. PCI compliance applies to all businesses that accept, transmit, or store any cardholder data, regardless of their size, or number of transactions. By using a third-party company for payments, it may cut down on your risk exposure and consequently reduce the effort to validate compliance but it doesn’t mean you can ignore PCI compliance.
What types of business need this cover?
All businesses that:
Hold sensitive customer data. For example, you keep a record of names, addresses or banking information.
Are reliant on computer systems.
Have a website.
Use an online payment facility.
The most common businesses that we see taking out this cover are:
Accountancy
Hotels
Recruitment
Advertising and marketing
Law
Retail
Construction
Manufacturing
Technology
Consultancy
Marketing
Telecoms
Education
Media
Transport
Hospitality
Publishing
Restaurants
I have passwords, is that the same as encryption?
No, encryption scrambles the data on a hard disk so it is unusable, unless it is opened with a decryption key. If you only password protect your data a hacker could bypass the password to access the information that has not been encrypted.
Why do I need to buy "Cyber and Data Insurance" for my business?
There is a black market for the buying and selling of data. Hackers are getting more and more shrewd in the ways that they hack data. In 2014 The Department for Business, Innovation and Skills reported that 74% of small businesses and 90% of large organisations had suffered a data breach.
My data is stored in the cloud - does the liability not rest with the cloud company?
You would need to check the contracts with your legal team. As the liability may still fall to you. The risk may have been reduced by using this service but in general you can outsource the service but not the responsibility.
My IT team is confident we are secure do I still need a policy?
Yes, many large companies that have separate departments for IT security have still suffered data breaches - examples of this would be Yahoo, Talk Talk, Uber and the NHS.
A simple oversight like not updating software, losing an unencrypted laptop, or a rogue employee with malicious intent can all lead to breach.
Cyber and data risks insurance is designed to support and protect your business if it experiences a data breach or is the subject of an attack by a malicious hacker that affects its computer systems.
Our website uses cookies to enhance your browsing experience,
provide personalized content, and analyze our traffic. Some of these cookies are essential for
the website to function while others can be switched on or off.
By clicking "Accept all" you agree to
the uses explained in our Cookies Policy. If you click "Reject all" we'll block all non-essential cookies
but those crucial to the website's operation will still be used.
Cookies Policy
What are cookies?
A cookie is a small text file that is placed and stored on your computer, mobile or other device, by the websites that you visit. Cookies are widely used in order to make websites work more efficiently and also to provide information on visitor behaviour to the website owner.
Session Cookies
These are temporary cookies that remain in the cookie file of your device's browser until you close the browser. They enable certain site functionality and are also used by the server to store/remember information about user web page activities so user information can be stored throughout an online web process - for example this could be used to allow information to be carried across website pages so that you don't have to re-enter information.
Persistent Cookies
These are cookies that remain in the cookie file of your browser for much longer. Generally speaking, these cookies are used to track website visits, including returning and unique visitors (first time visitors) and monitor how they interact with a website. They can also be used to help arrange content to match a user's preference's/preferred interests. However these cookies cannot be used by themselves to identify you.
Why do we want to use Cookies?
We use cookies to:
make our websites work
improve the efficiency of our website
provide effective security when you are buying our products
help us to arrange content to match your preferred interests more quickly
learn from our website visitors and give the best customer experience we possibly can
track the effectiveness of our online marketing activity
deliver retargeting advertising
collect statistical information to assist us and our partners to learn how customers use our and their products
Some benefits to you:
security
the ability to view pages that are more relevant to you
you are not asked repeatedly the same questions; for example to complete a survey
you are presented with advertising that is relevant to what you are looking for at the time
Some drawbacks
some cookies are stored on your browser for a certain length of time
you may be presented with advertising that is relevant to whatever you are looking for at the time, which can be viewed as limiting your choice
some cookies may be used to track your viewing behaviour when you visit our website
Examples of where we use cookies
Booking process - We use cookies to maintain a user's session and allow data to be passed between different online pages within the quote engine in order to provide a quote/policy.
Google Analytics - We use these cookies as part of our web analytics activity to monitor traffic and compile reporting about how users are using our website, These cookies are used to capture anonymous data about how users journey around our website. Types of data it gathers number of visits, date of first & last visit, time on spent on the website
Online chat - We use cookies to let us know what pages you have been on, previous chats number of visits - this helps us to provide you with more relevant advice / guide you to the information you require.
To track traffic from referral website(s) - This cookie is used to ensure accurate payment to our partner website. In terms of referral information this is stored against a customer record within our database.
Use of cookies by associated websites and third parties
Please be aware that our website contains links to and from other websites. We accept no responsibility or liability for the content of these websites or the cookies they use. If you choose to visit another website via our website, you will need to contact them separately to have your personal information deleted from any records they might hold. It is also the responsibility of that website to detail their use of cookies to you on their website and get the relevant consent from you for usage.
How to refuse use of cookies
When you decide to get a quotation or buy on line we will use necessary cookies for your security and to provide you with a policy.
If you do not want allow any of the other cookies, you can disable the use of cookies by using your internet browser settings. Please note if you disable the cookies you may experience slower running times and you may not be able to access all of our website content.
Browser - Where to find information about controlling cookies