Cyber and Privacy Insurance

By Jake Frankenfield
Updated January 12, 2023
Reviewed by Akhilesh Ganti
Fact checked by
Daniel Rathburn
Daniel Rathburn Headshot
Fact checked by Daniel Rathburn
Full Bio

Daniel Rathburn is an editor at Investopedia who works on tax, accounting, regulatory, and cryptocurrency content.

Learn about our editorial policies

What Is Cyber and Privacy Insurance?

A cyber and privacy insurance coverage policy can provide companies with protection from losses resulting from a data breach or the loss of electronically-stored confidential information.

Cyber and privacy insurance policies are designed to protect a company from the costs related to activities of hackers and other individuals or groups who may gain access to company-stored personal identifying information (PII). Those costs can include restoring system security and providing credit monitoring services to clients, among many other expenses.

Key Takeaways

  • Cyber and privacy insurance protects companies from costs related to hackers who may gain access to company-stored personal information.
  • Cyber insurance is typically not included in general liability insurance.
  • A cyber and privacy insurance coverage policy may protect companies from losses that result from data breaches or confidential data loss.
  • Costs related to a data breach can include the expense of notifying clients, providing credit monitoring services, restoring personal data, and more.

How Cyber and Privacy Insurance Works

The use of computers and the internet has become an integral component of business operations over recent decades. Many businesses rely on the internet to reach customers and to deliver services to clients. They frequently transfer of confidential and private information from the client to the company and vice versa.

Information that could be subject to a data breach includes credit card details or other financial information, driver's license numbers, Social Security numbers, health records, and contact information.

Businesses are at risk of attack if they collect and store purchase information, maintain records of Social Security numbers, or have credentialing or educational data. This type of information is prone to identity theft attacks.

A cyber and privacy insurance policy, often called cyber insurance, will cover your business' liability for a data breach that results in an exposure of customer's personal information. It will typically cover legal fees and expenses related to the breach.

Cyber insurance may also include assistance with notifying customers about the breach and restoring the identities of customers who were victims of identity theft. It may also help with the costs of restoring a computer system and recovering compromised data.

Example of Cyber and Privacy Insurance

For example, if you have a small floral shop that delivers flowers, you may keep a database of your customers' information. It may include their email address for you to send marketing material, as well as a record of their payment information and addresses.

If the business suffers a cybersecurity attack, you will face a number of expenses. In most state, you will have to notify customers about a data breach. You may want to provide your customers with credit monitoring as a good gesture. And you may have to restore your computer systems with stronger protection.

General liability insurance typically would not cover these costs. However, cyber insurance usually would.

Cyber and Privacy Insurance Benefits

Cybersecurity can present a challenge for organizations, no matter how much money they invest in protection. Hacking through the use of social engineering, such as phishing email attacks, or other methods exploits human tendencies as the criminal gains access to sensitive or personal information.

A data breach can have far-reaching and costly implications for a company. It can disrupt day-to-day operations as the company tries to understand how the data breach occurred, repair the damage done to systems, and make the necessary system updates to prevent a similar violation from happening in the future.

The publicity from a breach can negatively impact the business’ standing, as customers who have had their private data compromised may switch to a competitor and potential customers may walk away due to fears of losing their data as well. Providing monitoring of client's credit can restore their peace of mind, and cyber insurance can often help pay for these costs following a data breach.

Data breaches carry a significant threat of legal action. The company may be required to notify clients of the incident and may need to provide credit-monitoring services at no cost to the affected individuals who had their data stolen. Further, the company may be held responsible for fraudulent purchases and fund transfers due to its security cyber-mishap.

In some cases, regulators may levy fines against the company, and individuals may file civil suits against the company for financial issues related to the breach of secured data.

Cyber and privacy insurance coverage can also help your business recover from the financial and regulatory burdens that can result from a security breach. The amount of liability coverage in a cyber and privacy insurance policy depends on the terms of the policy.

What is a Data Breach?

A data breach is typically when a third-party hacker penetrates or breaches a secured computer network and downloads large volumes of personally identifiable consumer information such as name, data of birth, Social Security numbers, addresses and email addresses. Hackers can also steal financial information like credit card or bank account numbers.

What is Cyber and Privacy Insurance?

Cyber and privacy insurance is a type of insurance coverage that primarily applies to businesses that run secure computer networks as part of their business. Cyber and privacy insurance covers businesses against losses stemming from computer hacks, which can affect ongoing operations and entail legal and regulatory ramifications.

Does a General Liability Policy Cover Cyber Liability?

A business' general liability policy will typically not include cyber liability. General liability usually covers, for example, bodily injuries or property damage that result from your products or services, but it will not cover costs related to liability for a data breach.

The Bottom Line

A data breach can have far-reaching implications for a company. Buying a cyber and privacy insurance policy can help you protect your business from the costs related to a data breach, including the expense of regulatory burden. The amount of liability coverage in a cyber and privacy insurance policy depends on the needs of the company.

Article Sources
Investopedia requires writers to use primary sources to support their work. These include white papers, government data, original reporting, and interviews with industry experts. We also reference original research from other reputable publishers where appropriate. You can learn more about the standards we follow in producing accurate, unbiased content in our editorial policy.

  1. Nationwide. "What is Cyber Insurance?"

  2. Consumer Financial Protection Bureau. "What is Identity Theft?"

  3. Infosec. "10 biggest cybersecurity fines, penalties and settlements of 2021.".

Take the Next Step to Invest
×
The offers that appear in this table are from partnerships from which Investopedia receives compensation. This compensation may impact how and where listings appear. Investopedia does not include all offers available in the marketplace.
Service
Name
Description