Skip to main content

Cyber Insurance: All you need to know

 







x

In simple terms, cyber insurance is insurance that covers the liability of a business under a data breach where sensitive personal data of the customer(s) are involved. This sensitive personal data includes credit card numbers, driver’s licenses, social security numbers, account numbers or health records. It not only covers businesses but also individuals that provide services under such businesses. Risks that are internet-based such as information privacy, information technology infrastructure, information governance liability, etc are generally excluded from traditional insurances that cover commercial liabilities.

Cyber insurances provide certain coverage like first-party coverage and liability coverage. First-party coverage includes losses caused by extortion, theft, data destruction, DoS attacks and hacking whereas liability coverage indemnifies companies against losses caused to others which includes failure to safeguard data, error and omissions or defamation. There are other benefits under cyber insurance like public relations post-incident and investigation expenses, criminal reward funds, and regular security audits.


Is cyber liability covered under general liability policies?

As explained above, cyber insurances are usually excluded from such general policies. This is because general liability policies only cover businesses from damage to property or bodily injuries that have been caused by their products. 


What is covered under cyber insurance?

The process of sending notifications to customers whose Personal Identifiable Information {PII} have been compromised in a data breach can be very expensive. But most states in India requires companies to do so. When we even talk about free credit monitoring offered by companies, it is not required in most states but proves to be beneficial to go along with public relations. Due to this, cyber insurances include the costs related to the following:

  • Data breach notifications to customers

  • Legal fees and expenses

  • Recovery of data compromised by hiring computer forensics

  • Replacing or repairing computer systems that have been damaged

  • Restoring the affected customer’s personal identities or data that has been altered or stolen

  • Meeting demands of extortion under a ransomware attack.


What is not covered under cyber insurance?

  • Cyber events that have been caused by a company’s employees or insiders

  • The cost incurred in technological improvements like hardening security in the application or system

  • Cyber events that occurred in the past, before purchasing the policy

  • Failures in infrastructure that was not caused by any cyber event

  • Failure by the company to fix a vulnerability that was known


Who is required to get cyber insurance?

Cyber insurance should usually be taken by businesses that manage, create or store data electronically including customer sales, contacts, credit card numbers, health records, etc. The best examples are e-commerce platforms such as amazon, flipkart, myntra, etc who can undergo a huge loss in customers and sales due to cyber incidents. Even businesses who simply store information of their customers on their websites can benefit under cyber insurance.  


To stay connected, please check: https://www.worldcybersecurities.com/

                

By: Aarushi Chopra

   {BA LLB, Amity Law School}


Labels:

Comments

  1. Unknown10 December, 2021

    Insightful! Thanks for sharing.

    ReplyDelete
  2. Aarti R11 December, 2021

    Great work! Cyber insurance is indeed need of the hour. We need to build more infrastructure and create awareness about it.

    ReplyDelete
  3. Chinmayee kulkarni14 December, 2021

    It is very important to understand and become aware about this topic - cyber insurance. Many cyber frauds take place and people face great financial losses due to same. Insurance companies can revamp such losses by giving aid to the cyber victims. There must be a legislation for the same where every person required would understand and can avail the insurance facilities.

    ReplyDelete
  4. Devendra Shukla17 December, 2021

    Cyber insurence developed faith towards the data sefty and Cyber security among the people. As it also cover financial loss as well as data loss both, it will help to people get atleast some amount of security.

    ReplyDelete
  5. vicky kumar18 December, 2021

    This blog is resources, yes we all organization need cyber insurance to cover from breaches.

    ReplyDelete

Post a Comment

Popular posts from this blog

Dark Web: Safe or unsafe? Truth Revealed!

  The dark web is the part of the internet that is not visible to search engines. With the advancement in technology, digitization has resulted in different types of attacks. We can talk to anyone as long as we have an internet connection. The main concern is with privacy and anonymity in mind.  A team of computer scientists and mathematicians working for one branch of the US navy which is known as the Naval Research laboratory (NRL), developed a new technology known as Onion Routing. It allows anonymous communication where the source and destination cannot be determined by the third party. A network using the Onion Routing technique is classified as Darknet. The NRL released the Onion Routing Technique and it became The Onion Router, also known as TOR. Advantages of Dark Web  Humans are allowed to hold privacy and express their views freely. Privacy is considered to be critical for honest persons through the different criminals and stalkers.  The growing tendency of...
5 comments
Read more

Famous Cyber crimes That Targeted People Instead Of Money

  With the emergence in the field of technology, the number of cyber crimes have also emerged. Different types of cyber crimes daily take place such as phishing, email spoofing, data theft, identity theft, bullying, harassment, cyber extortion, ransomware attacks, etc. The majority of the people would opine that the Cyber criminals engage in these activities for the sake of money but there are numerous examples where money wasn’t the only target of the Cyber criminals, rather they targeted people.  The intent of cyber criminals,  targeting the people can differ from case to case. Sometimes it may target a single person or sometimes a large number of persons. Various examples show the instances where the target of the cyber crimes were people, be it belonging to specific religion or age group or sometimes a sole person. Various examples of such crimes are discussed below: Bulli Bai App - This app was created over the platform namely GitHub which is an open software develop...
1 comment
Read more

New Privacy Policy of Twitter

  Twitter is one of the most commonly used social media networking platforms and is very popular amongst celebrities as well. People enjoy uploading tweets and retweets over Twitter. It is a good platform for social messaging, news and marketing, etc. But recently twitter has been in the news for a change in its privacy policy. Just a few weeks after the announcement that Elon Musk was going to acquire that social media platform, Twitter had revamped its privacy policy. Everyone was expecting something big after that announcement and many were curious to know if there will be any changes in that micro-blogging platform. Later on, Twitter introduced the privacy policy to their users by creating a video guide for users so that they can understand the privacy policy. Also, Twitter has said that its new privacy policy is much more simplified and organized under three new heads namely data use, data sharing, and data collection. The new version of twitter’s privacy policy will take effe...
1 comment
Read more