Making Sure: When Is Third-Party Cyber Insurance Needed?

It’s a natural impulse, especially perhaps when it comes to purchasing insurance coverage.

And even more especially when the insurance coverage is for something as intimidating as cyber security – a vague, nondescript, fuzzy and murky world that many people don’t truly understand, whether they would admit it or not.

The natural impulse in question comes in the form of “making sure.”  Is my policy loaded up sufficiently to safeguard my organization?  Hmm, I can’t be certain.  Let’s load it up, just to “make sure.”  That is not necessarily a bad thing or a wrong decision.  Getting all the facts, of course, can provide greater clarity.

One area of cyber security insurance presents an option between first-party and third-party coverage, and the choice in this segment, at least, can be pretty easily understood and acted upon appropriately.

First-party cyber insurance covers the costs associated with being the victim of a hack.  That includes everything from notifying clients of the breach, to weathering the storm of lost revenue that typically follows.  Third-party cyber insurance helps cover the risks of being blamed for a breach, particularly if the company in question does assessments of digital security – a fairly narrow area of specialty – or when a gap in one’s own security is responsible for passing on a virus to another organization.

Policies have evolved to cover first-party exposures more extensively, but third-party exposures and coverage grants are still present and quite possibly required to be purchased.

But think of “third-party” as being the same as a lawsuit.  In that case, if a business is not providing media services for a fee or IT services, its third-party exposures probably revolve around the following typical coverages:

  • A Media clause offering coverage for claims alleging liability resulting from the dissemination of online or offline media material, including claims alleging copyright/trademark infringement, libel, slander, plagiarism or personal injury. This could include websites, social media sites, and chat rooms. 
  • A Privacy & Network Security clause would involve third party actions or lawsuits involving customer information, vendor information, or employee information.

Do you want to “make sure” when it comes to cyber coverage?  Contact the team of professionals at the Reschini Group for more information on cyber security options that make sense for your organization.

Copyright 2020 The Reschini Group

The Reschini Group provides these updates for information only, and does not provide legal advice.  To make decisions regarding insurance matters, please consult directly with a licensed insurance professional or firm.

A Business Survival Issue: Cyber Security Coverage

Cybersecurity has crossed from being an IT issue to being a business issue, and 2018 promises to see a significant ratcheting up of cybersecurity coverage as a result.

The growing cyber threat and stricter cybersecurity regulations will boost the growth of cyber insurance policies this year, according to industry sources.  According to NetDiligence, whose data is based on actual cyber insurance claims, the average cost of a cyber breach in 2017 was $349,000 for small companies, reaching an average cost $5.9 million for major organizations.

As senior decision-makers understand the level of financial exposure, cyber insurance will need to answer the call more and more.  Allianz predicts that global cyber insurance premiums will grow to $20 billion by 2025, up from around $4 billion currently.

According to a 2017 Ponemon Institute survey, while 87% of companies view cyber liability as one of their top 10 business risks, only 24% admit to having cyber insurance.  That may be due to a lack of clarity about how this coverage works.  Cyber insurance differs from auto or home insurance, where the risks are known and the products haven’t changed that much. It is much more complex and potentially more dangerous than traditional risk.

Organizations need to demonstrate that they have followed best practices to protect consumers and employees. They will also need to shift their approach to cyber-risk management, with a focus on accountability, to identify their threats and insurance needs through a deep technical diagnostic linked to realistic business impact.

The team at The Reschini Group is here to help you assess your need, and assemble the most cost-effective package, for increased cyber coverage to meet your particular situation.

Because it’s not just an IT issue any longer.  Protecting your cyber security is now a front-and-center business survival issue.

Copyright 2018 The Reschini Group

The Reschini Group provides these updates for information only, and does not provide legal advice. To make decisions regarding insurance matters, please consult directly with a licensed insurance professional or firm.