Data breach insurance

Data breach insurance coverage refers to several different policies that all safeguard the same part of your business: information. This insurance helps you respond to a breach if sensitive information gets lost or stolen – from a hacker's phishing attack on your network or a lost employee laptop with unencrypted data.

These policies include data breach insurance, cyber liability insurance, and technology errors and omissions insurance (tech E&O).

Any business that works with or handles sensitive or personal data can be a target for an expensive data breach. Generally, data falls into one of two categories: personal information and financial information. And, if you store either types or transact online, your business is at risk.

As security breaches become more common, the financial strain will also increase. Small business owners aren't likely to afford the cost of a data breach out of pocket. But with data breach insurance coverage, they're able to easily recover from the financial losses associated with a cyber attack.

The premium for data breach insurance is quite low when you consider how much a data breach could cost your company. The amount you pay depends on the type and amount of coverage you buy. For example:

Adding a data breach rider to your general liability policy is the least expensive option. It should only add a small amount to your general liability insurance premium. Small businesses pay an average cost of $42 per month for this policy.

Purchasing a standalone cyber insurance policy costs an average of $140 per month for Insureon's small business customers.

Bundling coverage in a tech E&O policy costs an average of $60 per month for small IT and technology businesses.

In addition to the type of coverage you buy, these factors also affect your premium:

• Your policy limits
• The amount of sensitive data your company handles
• Your business size and revenue
• Your claims history

Commonly referred to as cyber liability insurance, data breach insurance helps cover the costs of cybersecurity breaches. The type of data breach insurance your business needs depends on the type of work you do and how much cyber risk you face.

For instance, a web hosting company would need broader data breach insurance coverage than a medical office. While both businesses handle customer data, the web hosting company could be held liable for a data breach that affects its clients.

There are four different options for data breach insurance to choose from, depending on your coverage needs:

• First-party cyber liability insurance
• Third-party cyber liability insurance
• Technology errors and omissions insurance
• A data breach insurance rider to general liability insurance or a business owner’s policy (BOP)

First-party cyber liability insurance protects you from the high costs of a data breach or ransomware attack against your business’ servers and computer systems. If your business stores sensitive data like credit card numbers or Social Security numbers, you should consider first-party coverage.

This insurance policy will protect you from the damaging costs of a data breach, such as:

• Investigating and correcting the cause of the breach
• Business interruption
• Customer notifications
• Fraud and credit monitoring services
• Cyber extortion negotiation and demands
• Regulatory fines
• Public relations efforts

Third-party cyber liability insurance protects you from lawsuits related to financial losses from a data breach or other cyber incident at your client’s business.

Any business that could potentially be blamed for a client’s data breach may need this coverage, such as cybersecurity companies, network security companies, software developers, or IT consultants. It's a must-have for anyone responsible for a client's cybersecurity, even if they only recommend software.

Regardless of fault, third-party coverage can help pay costs like:

• Attorney’s fees
• Settlements and judgments
• Court costs

Many IT businesses choose to purchase a technology errors and omissions insurance policy, which combines third-party cyber liability insurance with errors and omissions insurance – often at a discount.

Tech E&O insurance protects businesses from lawsuits over the quality and delivery of your work. It provides liability coverage related to:

• Client data breaches and cyberattacks
• Work mistakes and oversights
• Undelivered services
• Missed deadlines
• Accusations of professional negligence

Data breach insurance may be available as a rider (add-on) to your general liability insurance or business owner’s policy. This is a good option for businesses that have lower cyber risks and store limited amounts of sensitive information.

Be cautious, though – data breach riders typically come with smaller limits than their full policy equivalents. If you’re unsure of what level of data breach coverage you’ll need, one of our expert insurance agents can help.

Data breach insurance covers both accidental and intentional data breaches due to:

• Employee errors
• Software and security flaws
• Cyberattacks like hacking, malware, and ransomware
• Employee data theft

However, not all data breach insurance policies cover every situation.

For instance, a first-party cyber liability policy would cover you if one of your employees opens a phishing email. It won’t protect you if you’re sued by a client because a software company you recommended accidentally exposed their data. In that instance, you would need third-party cyber liability coverage.

Complete Insureon’s easy online application today to get quotes from top-rated U.S. insurance companies. Once you find the right policy for your small business, you can begin coverage in less than 24 hours.