ISO? ISO? ISO? LTD ISO?



Similar documents
APIP - Cyber Liability Insurance Coverages, Limits, and FAQ

Internet Gaming: The New Face of Cyber Liability. Presented by John M. Link, CPCU Cottingham & Butler

GALLAGHER CYBER LIABILITY PRACTICE. Tailored Solutions for Cyber Liability and Professional Liability

CYBER RISK SECURITY, NETWORK & PRIVACY

Application for NetProtect 360 Information Risk Insurance (for General Industry)

Joe A. Ramirez Catherine Crane

Specialty Risk Protector

Insurance Considerations Related to Data Security and Breach in Outsourcing Agreements

THE NEW REALITY OF RISK CYBER RISK: TRENDS AND SOLUTIONS

Zurich Security And Privacy Protection Policy Application

Insuring Innovation. CyberFirst Coverage for Technology Companies

Understanding Professional Liability Insurance

RISKY BUSINESS SEMINAR CYBER LIABILITY DISCUSSION

Rogers Insurance Client Presentation

Mitigating and managing cyber risk: ten issues to consider

How To Write A Network Security Endorsement

CyberEdge. Desired Coverages. Application Form. Covers Required. Financial Information. Company or Trading Name: Address: Post Code: Telephone:

cyber invasions cyber risk insurance AFP Exchange

Cyber-Crime Protection

Managing Cyber Risk through Insurance

Cyber and Data Security. Proposal form

Cyber Insurance Presentation

Privacy and Data Breach Protection Modular application form

Cyber Risks Management. Nikos Georgopoulos, MBA, cyrm Cyber Risks Advisor

CYBER & PRIVACY LIABILITY INSURANCE GUIDE

Enterprise PrivaProtector 9.0

Demystifying Cyber Insurance. Jamie Monck-Mason & Andrew Hill. Introduction. What is cyber? Nomenclature

Data Breach and Senior Living Communities May 29, 2015

IRONSHORE SPECIALTY INSURANCE COMPANY 75 Federal St. Boston, MA Toll Free: (877) IRON411

Data breach! cyber and privacy risks. Brian Wright Michael Guidry Lloyd Guidry LLC

How To Cover A Data Breach In The European Market

Ten Questions Your Board Should be asking about Cyber Security. Eric M. Wright, Shareholder

TechDefender SM. Tech E&O, Network Security, Privacy, Internet Media, and MPL Insurance Application

Privacy Liability & Data Breach Management Nikos Georgopoulos Cyber Risks Advisor cyrm October 2014

Airmic Review of Recent Developments in the Cyber Insurance Market. & commentary on the increased availability of cyber insurance products GUIDE

ACE Advantage PRIVACY & NETWORK SECURITY

Tools Conference Toronto November 26, 2014 Insurance for NFP s. Presented by Paul Spark HUB International HKMB Limited

What would you do if your agency had a data breach?

Data breach, cyber and privacy risks. Brian Wright Lloyd Wright Consultants Ltd

Cyber and data Policy wording

Cyber Risk Insurance for Agents. Frequently Asked Questions

Privacy Rights Clearing House

Understanding the Business Risk

Cyber-insurance: Understanding Your Risks

DATA BREACH COVERAGE

Cyber/ Network Security. FINEX Global

Hit ratios are still very low for Security & Privacy coverage: What are companies waiting for?

Technology, Privacy and Cyber Protection Modular application form

CYBER INSURANCE. Cyber Insurance and Gaps in Traditional Insurance. Cyber and E&O Team Willis FINEX North America

Network Security & Privacy Landscape

Belmont Savings Bank. Are there Hackers at the gate? 2013 Wolf & Company, P.C.

LAMAR STATE COLLEGE - ORANGE INFORMATION RESOURCES SECURITY MANUAL. for INFORMATION RESOURCES

Service Schedule for CLOUD SERVICES

What Data? I m A Trucking Company!

THE ANATOMY OF A CYBER POLICY. Jamie Monck-Mason & Andrew Hill

(1) Commercial Crime Insurance or Employee Fidelity Bond

Cyber Risks in Italian market

Cyber Risks and Insurance Solutions Malaysia, November 2013

10 Smart Ideas for. Keeping Data Safe. From Hackers

CAMBRIDGE PROPERTY & CASUALTY SPECIAL REPORT

Cyber Threats: Exposures and Breach Costs

CyberEdge Insurance Proposal Form

MEDIATECH APPLICATION

MANAGING Cybersecurity Risk AND DISCLOSURE OBLIGATIONS

Cyber Self Assessment

Insurance implications for Cyber Threats

MPL SECURE: MISCELLANEOUS PROFESSIONAL AND NETWORK SECURITY LIABILITY INSURANCE POLICY APPLICATION

Cyber Risk: Global Warning? by Cinzia Altomare, Gen Re

Cyber Liability. What School Districts Need to Know

PRODUCT MANUFACTURER S PROFESSIONAL LIABILITY, INCLUDING COMPUTER NETWORK SECURITY, PRIVACY, MULTIMEDIA AND ADVERTISING LIABILITY APPLICATION

Cyber-Technology Policy Comparisons

Cyber/Information Security Insurance. Pros / Cons and Facts to Consider

Discussion on Network Security & Privacy Liability Exposures and Insurance

Be Afraid, Be Very Afraid!!! Hacking Out the Pros and Cons of Captive Cyber Liability Insurance

Transcription:

Property NetProtect 360 SM and NetProtect Essential SM Which one is right for your client? Do your clients Use e-mail? Rely on networks, computers and electronic data to conduct business? Browse the Internet or have their own Web site? Handle valuable or personal information on their or another s network? Generate revenue online (e-commerce)? Use their network to control production, manufacturing, inventory or a supply chain? Interact or collaborate with others (clients, suppliers, partners or the public) via the Internet? Advertise or promote their business online, or publish digital content? If the answer is yes to any of the above, then your client has an exposure and will likely need specialty coverage. Traditional coverage forms alone including Property, GL, Crime and E&O typically fall short of covering information and network-related risks. NetProtect 360 SM and NetProtect Essential SM address these issues: NetProtect NetProtect 360 Essential SM SM GL Crime Bond K&R Misc. Professional Liability Tech E&O First-Party Cyber Risks Data Recovery Business Income Denial of Service Virus/Hacker/Sabotage Theft of System Resources Extortion Third-Party Cyber Risks Theft/Disclosure of Data Damage to Someone Else's Data Professional E&O Media Liability (Web Content) Privacy Liability Network Security Malicious Act/Hacker/Sabotage Administrative Error Virus/Malicious Code Coverage Provided Limited Coverage Can Be Provided Coverage May Be Available Via ISO Endorsement CNA NetProtect 360 SM sets a high industry standard for network security, content and privacy liability protection, bringing together both first- and third-party coverage. NetProtect 360 SM coverage is worldwide, claims-made with limits up to $10 million. This product is designed for companies in business for three or more years that are U.S., Canadian or European Union domiciled and generate gross revenue up to $1.5 billion. CNA NetProtect Essential SM, similar to NetProtect 360 SM, is designed to meet the network security and privacy liability needs of smallto mid-size companies. NetProtect Essential SM also covers costs to comply with applicable laws requiring your client to notify customers or users if a security breach could potentially compromise private information. Admitted coverage is worldwide with limits up to $2 million. NetProtect Essential SM is designed for any business that is U.S. domiciled and generates gross revenue of less than $100 million. To learn more about NetProtect 360 SM and NetProtect Essential SM, contact your local Technology underwriter. One or more of the CNA companies provide the products and/or services described. The information is intended to present a general overview for illustrative purposes only. It is not intended to substitute for the guidance of retained legal or other professional advisors or to constitute a binding contract. Please remember that only the relevant insurance policy can provide the actual terms, coverages, amounts, conditions and exclusions for an insured. All products and services may not be available in all states. CNA is a service mark registered with the United States Patent and Trademark Office. Copyright 2008 CNA. All rights reserved. E SS 081108

As businesses of all types increase their reliance on information and networks, while assuming responsibility for their customers data, they face increased exposure to computer attacks, viruses and security breaches. With CNA, you have access to the underwriting and risk management expertise to help your clients build highly protected risk strategies that combine people, controls, technology and insurance to provide important insurance coverage. Traditional coverage forms alone including Property, General Liability (GL), Crime and Errors & Omissions (E&O) typically fall short of covering information and network-related risks. NetProtect 360 SM fills the gaps by offering exceptional first- and third-party cyber risk coverage to address a broad range of exposures. Our underwriters are recognized experts in this field and have an average of more than 10 years of experience in crafting information risk coverage to meet unique client needs. Key Competitive Advantages Broad information risk coverage that includes offline services and information, not just online coverage Covers network information enterprise-wide, not just information on Web sites Covers security breaches, mistakes and unauthorized employee acts, including virus attacks, hacking, identity theft or private information loss, and infringing or disparaging content Includes theft of others trade secrets and proprietary or confidential information from the insured Covers regulatory proceedings, typically at full limits All liability coverage includes vicarious liability, i.e., privacy injury claims alleging wrongful acts by insured or by someone for whom the insured is legally responsible Broad Appetite NetProtect 360 SM coverage is worldwide, claims-made with limits up to $10 million. This product is designed for companies in business for three or more years that are U.S., Canadian or European Union domiciled and generate gross revenue up to $2.5 billion. Although NetProtect 360 SM is available to nearly any industry and most classes of business, the following industries are particularly good candidates for this coverage: Financial Services Healthcare and Life Sciences Manufacturing Telecommunications Technology

NetProtect 360 SM Modular Coverage at a Glance Our menu-based form lets you design and choose coverage that s right for your clients. Please note: NetProtect 360 SM is surplus lines coverage. Agents and brokers must be licensed for surplus lines and are responsible for all related taxes and fees. Privacy Injury Liability Privacy Regulatory Proceedings Public Relations Expenses Network Security Liability What NetProtect 360 SM Covers Privacy rights violations Private actions or unauthorized disclosure or use of others personal and private information in violation of privacy laws, government regulations or institutional policies Unauthorized disclosure of others company sensitive information, e.g., trade secrets Defense of a proceeding or action brought by a privacy regulator Note: Available where permitted by law and typically excludes fines and penalties. Please contact your local CNA representative for more details. Expenses incurred in responding to adverse publicity or media attention arising from a claim, including a covered extortion claim, covered elsewhere in the policy Includes coverage for related expenses to preserve favorable relationships with customers following a breach Third-party claims arising from: Others inability to use or access insured s network Infection of others networks by insured Information damage to others networks caused by insured Others inability to rely upon the accuracy, validity or integrity of information residing on insured s network Theft of others information, e.g. trade secrets, in insured s care resulting from unauthorized access to or electronic infection of insured s network Why Choose NetProtect 360 SM Covers 1 : All online and offline information across the enterprise, not limited to material on Web sites Worldwide coverage; actions can be brought in any jurisdiction Certain employee and third-party custodian acts Employee mistakes or unsanctioned willful actions, not limited to failure of security Any current or future privacy law or regulation in any jurisdiction Private or sensitive information on removable media, such as tapes, disks, personal digital assistants, or laptops, even if lost or stolen off premises Claims alleging use of spyware, spam or similar electronic intrusions Emotional distress in conjunction with identity theft or other privacy injury Employees private information Includes vicarious liability for private information entrusted to third parties; certain restrictions may apply 1 Typically no sub-limit; full limits of privacy coverage apply True worldwide coverage; actions can be brought by regulators in any jurisdiction under any applicable privacy law No deductible and typically no co-insurance Covers 1 : Privacy breach-related Duty to Notify costs, e.g., SB 1386 or similar regulations Cost to remedy a privacy compliance deficiency following notification by a privacy regulator Cost to procure credit monitoring services on behalf of customers whose private information may be at risk due to a breach Outside expenses to restore your reputation Responds even if claims are not related to insured s services Includes unauthorized employee/ insider actions Includes theft of others trade secrets Covers: Viruses Denial of service Security breaches Mistakes

Content Injury Liability Professional Liability Network Extortion Emergency Response Fund 3 Network Loss or Damage 2,3 Business Interruption and Extra Expense 2,3 Extra Expense (optional coverage without Business Interruption) 3 Electronic Theft 4 What NetProtect 360 SM Covers Defamation, disparagement, false light, infringement, e.g., copyright, trademark, publicity rights, etc. Covers all forms of computer readable content, including software or other publications on CD-ROM, not just information on Web sites A broad media coverage option is available for those who publish in traditional media venues, e.g., television, radio and print Miscellaneous and/or Technology and Telecommunications E&O Pays credible extortionist s demands to prevent network loss or execution of a threat Costs to hire a security specialist firm to respond rapidly to an attack, contain damage, prevent cascading or escalating loss, and capture forensic information Costs to recreate or restore network to pre-loss conditions Lost online and offline income, as long as income is network dependent Extra expenses incurred in mitigating loss Outside costs or additional expenses beyond customary operating cost to mitigate loss and reduce downtime Three optional coverages are available for theft via insured s network: Basic option Covers theft of your money, securities or goods Service option Theft of your services Intangible property option Theft of your intangible property, e.g., intellectual property Why Choose NetProtect 360 SM Fills many gaps in GL advertising injury or personal injury coverage Responds even if claims are not related to insured s services or advertising Includes software copyright infringement Enhanced broad media coverage available for traditional publishing venues, including TV, radio, print and cable Covers both online and offline services Responds when individuals who gain unauthorized access to private data attempt to extort money from the victim in exchange for not causing harm Includes coverage for employee/ insider extortion demands Provides coverage if kidnap and ransom (K&R) coverage does not respond or if insured does not buy K&R coverage Typically no deductible and low co-insurance Includes coverage for employee/ insider attacks Covers: Both online and network-dependent offline income Acts of employees or other insiders Costs to implement short-term measures to quickly restore operations Outsourced network operations; certain restrictions may apply 1 Coverage accommodates income peaks and seasonal income fluctuations Basic coverage includes diversion of saleable goods, e.g., retail inventory or medical supplies and equipment Service option covers actual price of services Intangible property option covers the economic value of intellectual property assets Notes: 1 Liability coverage includes vicarious liability coverage where insured is legally liable for the wrongful acts of others including third-party custodians to whom insured entrusts private/sensitive information previously entrusted to insured. Public infrastructure, ISP, Telco, etc. are excluded. Sub-limits may apply. 2 First-party coverage for Insured s network automatically includes up to $100,000 in coverage for leased and outsourced network operations. Public infrastructure, ISP, Telco, etc. are excluded. 3 Coverage triggers for Extortion, Emergency Response Fund, Network Loss or Damage and Business Interruption and Extra Expense are hacking, denial of service and viruses. Attacks by insiders are included. 4 Electronic Theft coverage is limited to attacks by outsiders.

Restricted and Prohibited Classes NetProtect 360 SM cannot be written for certain classes, including: Adult Content Online Gaming or Gambling Online Interstate Sale of Alcohol, Tobacco, Firearms or Other Weapons Colleges, Universities and Similar or Related Risks Other than online universities Social Networking Online Retail Securities Dealers Selectively written Minimum Risk Controls To qualify for complete coverage, including first-party and network security coverages, insureds must implement, at a minimum, these risk controls: Anti-virus Employ anti-virus software on all computing devices Automatically update anti-virus software at least daily Automatically scan and filter e-mail attachments and downloads before opening files Automatically receive virus and threat notifications from the United States Computer Emergency Readiness Team (US-CERT), SANS Institute or a similar provider Securely configure firewalls using other than a default configuration Configure networks using multiple firewalls (or equivalent) to separate back-office operations from Internet-facing operations Promulgate a security policy to all employees and contractors Have a tested disaster recovery plan that includes recovery from data center disasters Have a tested security incident response plan that addresses both direct (e.g., hacking) and indirect (e.g., virus) attacks upon network Back up network data and configuration files daily Store back-up files in a protected location Employ separation of duties for access to sensitive systems and information Allow remote access to network only from secured remote systems and only if it is via a VPN or equivalent systems Monitor network platform vendors at least daily for availability of security patches and upgrades Test and install security patches and upgrades within 30 days of availability, preferably within seven days Always lock server room or otherwise limit access to authorized personnel Employ procedural and technical controls over hardcopy information and removable media containing sensitive information Evaluate safeguards and employ solid contractual controls over third parties who have access to networks, computer systems and information Routinely re-evaluate risk posture and adjust corresponding risk controls Other minimum controls may apply for content injury, privacy injury and professional liability coverage. Please inquire about specific risks and your clients needs. For more information about the CNA NetProtect SM product line, contact your local branch or visit www.cna.com. One or more of the CNA companies provide the products and/or services described. The information is intended to present a general overview for illustrative purposes only. It is not intended to substitute for the guidance of retained legal or other professional advisors or to constitute a binding contract. Please remember that only the relevant insurance policy can provide the actual terms, coverages, amounts, conditions and exclusions for an insured. All products and services may not be available in all states. CNA is a service mark registered with the United States Patent and Trademark Office. Copyright 2007 CNA. All rights reserved. TECH TLKT 360 100307

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information