In this era of digitization, every business and service is adopting the digital mode. The pandemic further added to it and acted as a catalyst in the digital shift making the whole world go completely online. From money transactions, data sharing, to online classes everything is virtual and life cannot be imagined without the internet. With so much dependence on the internet, there is an increased risk of cyber-attacks and fraud. There is a tremendous rise in cases of cybercrime in the last few years. India is one of the nations most affected by cybercrimes. Hence the importance of cyber insurance cannot be ignored.
● What is Cyber Insurance?
Cyber Insurance is a contract between the insurer and a company to protect against any losses due to a network-based event. It is designed to protect businesses from the effects of cyber-attacks. It mitigates the risk exposure by covering costs after a cyber-attack or security breach has happened. In other words, cyber Insurance covers the expenses and legal costs associated with cyber breaches which may involve hacking of systems, data theft, and loss of important information in an organization.
● What is Covered in Cyber Insurance?
Cyber insurance covers first-party and third-party liabilities arising directly from a cyber security breach. It covers expenses arising due to data breaches, cyber-attacks, human error, business disruption, and electronic media claims. The expenses covered include emergency response costs, event management costs, notification costs, business loss, and recovery costs.
● Types of Cyber Insurance Coverage:
Insurance providers offer customized plans based on industry-specific requirements and also company-specific requirements. Plans are offered according to the buyer’s needs. Following are the major types of coverages available under cyber insurance in India,
1. First Party Expenses:
Cyber insurance covers first-party expenses that include direct financial loss, business interruption costs, cover for mitigation costs, recovery costs, credit monitoring, system damage, and any additional costs.
2. Regulatory Investigation Cover:
It covers the costs of regulatory investigations, lawyer’s fees, admin costs, GDPR Expenses.
3. Crisis Management Expenses:
These expenses include the cost of forensic IT audit, stakeholder notification costs, security consultation, reputation damage cover, coordination with service providers, credit and identity theft monitoring Cover, Cyber extortion/ Ransomware Cover, Cyber Stalking, and Counselling.
4. Privacy and Data Liability Claims:
It covers the third-party legal liability of a company for damages directly arising from an error on the company’s side, or privacy or data or security breach which may result in defamation, Intellectual Property rights (IPR) infringement, and lawsuit.
● Liability of Customers:
RBI has issued directions to determine the liability of a customer in cases of cybercrime.
1. Zero Liability:
A customer has zero liability in the following two types of cases:
● Fraud, negligence, deficiency on the bank’s part, whether the transaction is reported or not.
● Third-Party breach: In a third-party breach, deficiency lies neither with the bank nor with the customer. It lies somewhere else. The customer notifies the bank about the unauthorized transaction.
2. Limited Liability:
● In a limited liability, the customer’s negligence causes the loss. For instance, sharing payment credentials. The customer bears the loss till the unauthorized transaction is reported to the bank. After the loss is reported, it is the bank’s responsibility.
● When the liability of loss is with some other party and not with the bank or customer. If there is a delay in notifying the bank, of such a transaction, the transaction liability of the customer is limited to transaction value.
How to Raise a Claim?
In case of a cyberattack, inform your insurer without wasting any time. It helps in a smoother analysis of the claim process. You can inform the insurer by email, a call, or a written notice along with a copy of the FIR with other relevant documents.
● Cyber Insurance for Individuals:
Nowadays, it is not only the businesses that are affected by cyber-attacks. There are many cases where individuals had to bear losses because of cyber fraud. Everyone uses the internet for money transactions, shopping, social media, and therefore, all personal information is available online which makes it vulnerable to cyber threats. So it becomes necessary for any individual to have a cyber insurance policy for Individuals. If you are above 18, you are eligible to purchase a cyber insurance policy. Coverage under the individual cyber insurance includes identity theft, social media liability, malware attack, phishing, data breach by the third party, etc. It also covers counselling services in many cases where a victim goes through an emotional setback due to identity theft or data breach or even cyberbullying
Conclusion
A cyber-attack can have serious repercussions on businesses as well as individuals. It is good to be prepared to deal with any such event. A cyber insurance policy will not just protect you in case of a cyberattack but will also help in reducing such events by checking their occurrence. While investing in a CYBER INSURANCE plan also take measures to make your digital world more secure. Maintain backup of important data. Invest in good anti-virus and firewalls. Be alert and aware during any online dealing.
