An insured under a cyber insurance policy is protected against losses caused by the use of computers, IT systems, mobile phones and other devices.
The coverage may extend to a loss sustained by the Insured by events like interruption in the operation of systems or loss of data, as well as a loss caused to third parties in the consequence of personal data leaks, infection of third party IT systems and computers, etc.
The purpose of cyber insurance is to provide an insured with expert assistance aimed at restoring their IT systems and devices to their pre-incident (attack) condition, as well as to pay legal expenses related to defence against ensuing claims made by third parties (companies, natural persons, state authorities).
If you have any questions, send us an email kontakt@findia.pl
Section I
First party cyber liability
Under this section of coverage, the policy pays for the insured’s expenses incurred in the restoration of:
the proper operation of the insured’s network (to the pre-loss condition),
information stored on the insured’s network, including physical documents
in connection with the occurrence of a cyber event.
Under this section of coverage, the policy pays for:
the insured’s loss sustained due to a reduction of business income in the consequence of a business interruption,
insured’s expenses incurred in order to resume or restore their business operations,
arising out of a cyber event, cyber theft or cyber extortion.
Under this section of coverage, the policy pays for a loss caused by:
theft or alteration/modification of the insured’s money or securities,
theft or loss of the insured’s goods in connection with the supply or delivery of goods,
which is sustained by the insured exclusively as a consequence of a cyber theft through unauthorised access during the period of insurance, but always excluding impersonation fraud.
Under this section of coverage, the policy pays for a loss caused by cyber extortion in connection with an imminent or probable threat of:
loss of, or damage to, the insured’s network,
loss of insured’s money or securities,
loss, disclosure or unauthorised use of the insured’s confidential information or the confidential information of others in the insured’s care,
defacement of the insured’s website,
the payment of forensic investigation costs on account of a claim related to para. (a)-(d) above,
which follows any reasonable threat to the insured posed by an extortionist, which occurs during the period of insurance.
Under this section of coverage, the policy pays for the cost of calls resulting from the hacking of the insured’s telephone lines.
Under this section of coverage, the policy pays for the loss caused to any IT system as the result of impersonation fraud.
Under this section of coverage, the policy pays for expenses following an actual or suspected disclosure of personal information, which were incurred by the insured in order to:
comply with a security breach notice law of any jurisdiction within the territorial limits, and provide customer support services such as credit monitoring services, call centre costs and identity theft education and assistance costs,
notify relevant individuals of such disclosure where no such security breach law exists and provide customer support services such as credit monitoring services, call centre costs and identity theft education and assistance costs.
Under this section of coverage, the policy pays for reasonable and necessary expenses incurred to respond to adverse or unfavourable publicity or media attention resulting from a cyber event.
Section II
Third party cyber liability
Under this section of coverage, the policy pays for damages arising out of a third-party claim made against the insured in respect of:
defamation of any individual or commercial enterprise,
product disparagement,
unintentional infringement of intellectual property rights
improper deep-linking or framing;
arising from the insured’s cyber media activities.
The insurer pays damages arising out of a claim made against the insured by a third party or insured’s employee in respect of:
a breach of an individual’s right of privacy or wrongful public disclosure of private information by the insured or third party custodian,
breach of the insured’s privacy policy, including breach of any common law or other law governing the confidentiality, integrity or accessibility of personal information, including any failure of the insured to provide notice of an actual or potential wrongful disclosure of personal information.
The insurer pays on behalf of the insured damages arising out of a third-party claim made against the insured in respect of disclosure of non-public corporate information or trade secrets in the custody of the insured or a third party custodian, including their failure to provide notice of an actual or potential wrongful disclosure of non-public corporate information.
The insurer pays on behalf of the insured damages arising out of a claim made against the insured by a third party in respect of the insured’s failure to prevent a cyber event resulting in:
the inability of others to access the insured’s network, or
damage to a third party network and/or loss of, or damage to, data stored on a third party network, or
loss of, or damage to, data of others stored on the insured’s network or with a third party custodian, or
loss of or damage to money or securities or the money or securities that the insured deposited with a third party custodian, but always excluding system failure.
if the insured demands that the insurer pay claim mitigation costs, the insurer will pay such costs to the insured or reimburse the insured for such costs.
The insurer pays on behalf of the insured damages arising out of a claim made against the insured by a third party in respect of:
regulatory penalties, civil penalties or fines but only to the extent insurable by law;
regulatory defence costs in respect of a criminal, civil or administrative actions or proceedings, including any pre-trial or appellate proceedings of any regulatory investigation in connection with the insured’s business activities.
The insurer will reimburse the insured (subject to the sublimit defined in the policy) for reasonable and necessary expenses approved by the insurer to respond to adverse or unfavourable publicity or media attention resulting from a claim indemnifiable under the insurance contract.
The insurer pays on behalf of the insured damages arising out of a claim made by a third party in respect of a breach of a written contract between the Insured and any entity or individual that governs the storage and processing of credit card information including any breach of the PCI DSS (Payment Card Industry Data Security Standard).
Would you like to know more?
Download our reference documents: