During this time and age, we all know how important cyber security is. Truth is, cyber attacks happen, and they are much more common than you might believe... You could be a small business, thinking: "This will never happen to me".
The dangerous thing about these attacks is...they can happen to anyone.
According to Travelers, "1 in 3 documented data breaches occur in businesses with less than 100 employees. What’s more, 60% of small businesses close their doors within 6 months following a cyber attack." If your business handles customer data or processes payment transactions, you’re at risk of a cyber attack. "Expenses associated with a data breach can quickly add up for a small business when the average cost of each compromised record is $217.3 Whether you have 300 customer records or 3,000, your bottom line could be impacted by legal defense costs, settlements, lost business, notification costs, and more."
SFI cares...We know how important security is for your business. Today we are sharing Traveler's 4 ways Cyber Insurance helps protect your business:
Any business that uses technology or collects data is at risk of a cyber attack, and the results can be catastrophic—one study suggests the average cost to rectify a data breach is now $7 million*. Without securing a dedicated cyber policy, most businesses likely do not have adequate insurance coverage following a data breach.
Cyber insurance can be essential in helping your company recover after a data breach, with costs that can include business disruption, revenue loss, equipment damages, legal fees, public relations expenses, forensic analysis and costs associated with legally mandated notifications. A lesser-known benefit of cyber insurance is the role it can play in protecting your company long before a breach occurs.
“At Travelers, we want to help you avoid a data breach in the first place,” explains Tim Francis, Travelers’ Enterprise Cyber Lead. “While that’s not always possible, by connecting companies to cyber resources to help learn about cyber risks, data security best practices and incident response planning, we can help companies prepare themselves to better respond to and withstand a data breach.”
For example, Travelers encourages companies to create, implement and test a business continuity plan and an incident response plan. Also, companies should consider having a secondary system available for online access and ensure this system is tested regularly for functionality. Implementing an intrusion detection system on your network can help companies respond to attacks sooner.
Following are some ways that cyber insurance can provide coverage:
Companies are responsible for their online data, no matter where it is stored. Whether it is stored on your property, in an offsite data warehouse or in a third-party technology company cloud, you may be held liable if any personally identifiable information (PII) or protected health information (PHI) gets exposed.
To help protect your company’s data, Travelers cyber professionals recommend you understand where all of your private or confidential information is stored. Create and test policies and procedures concerning the collection and storage of data, and have a document retention procedure in place to ensure you avoid keeping data you do not need.
If a breach does occur, a Travelers cyber policy can cover breach notifications and remediation expenses, subject to the applicable retention. It also can cover defense expenses such as responding to and cooperating with regulatory investigators. Lost Devices
Today’s mobile workforce means that laptops and other mobile devices often leave the workplace premises and may be stolen or compromised, potentially exposing private or confidential data. While you cannot completely prevent theft or loss, your organization can take steps to protect and limit the amount of data on each device, such as implementing procedures for using effective passwords and mandating periodic changes. Avoid storing any private or confidential data on laptops. Or, if necessary, store only encrypted data or access it via a secure connection to a server.
If a breach does occur, a Travelers cyber policy can include Network and Information Security Liability coverage, which provides protection for failure to prevent unauthorized access to, or use of, data containing private or confidential information of others. The costs for a single lost laptop can include more than just the cost of the device, such as legal costs, investigation and miscellaneous expenses.
Notifying customers of a breach and other post-breach responses, which is mandated by law, can add up, averaging $1.72 million according to one survey of U.S. businesses.* As part of the a cyber policy, Travelers would refer the customer to a law firm to serve as counsel and breach coach and help reimburse those costs, subject to the applicable retention. An incident breach response vendor would also be recommended to handle customer notifications, in keeping with state laws when personal information is compromised.
Computer forensics teams can determine the extent of a breach and whether private customer information may have been compromised. A Travelers cyber policy would reimburse the insured, subject to applicable retention, for computer forensic experts. The policy also could provide coverage for potential business loss and extra expenses that may occur during the period of business restoration.
Travelers customers have access to risk management services, cyber security experts and other resources to help prevent a data breach. Having cyber insurance can help prepare your company to respond effectively in the critical hours and days following a data breach.
Source: *Ponemon Institute 2016 Cost of Data Breach Study