The expenses resulting from a data breach can be staggering. A cyber insurance policy can help you recover without putting your business at financial risk
You might think your small business is too small to attract the attention of cybercriminals. But the newest research on data breaches suggest criminals are increasingly targeting small-business owners.
Cybersecurity firm 4iQ recently released a report studying 2018 data breaches. According to the report, an average of 217,000 pieces of consumer data were compromised during the typical data breach last year – that’s down 4.7 percent from 2017. While this might seem like good news, it’s actually a sign that smaller businesses are increasingly becoming the victims of data breaches.
“If you are a small business and collect and store credit card information or even if you just transmit information by email, you run the risk that this information will end up in the hands of the wrong person,” said Dave Stanard, representative for THREE by Berkshire Hathaway, a provider of insurance for small businesses. “Most small businesses are at risk of a data breach.”
Smaller businesses face an even greater risk because they often lack the money to invest in the software and IT infrastructure to keep hackers at bay. And when a data breach hits, they don’t have the resources to cover the costs of restoring their computer systems or surviving any business losses they suffer because of the attack.
That’s why small-business owners should consider investing in a cyber insurance policy. This insurance protects businesses if they suffer a data breach, covering the costs of restoring damaged computer systems, paying out to help business owners defend themselves in lawsuits and reimbursing these owners if they must shut down their businesses while recovering.
The challenge? Choosing a cyber insurance policy isn’t an easy task. Business owners must research policies to determine if they provide enough coverage. They must look at their own companies, too, to determine how much protection they need.
See related: How to protect your small business from a data breach
Stanard said small-business owners need to take a series of steps in the wake of a data breach, including:
All of these steps can add up. Businesses without cyber insurance to help cover these costs might struggle to remain open.
Sara Jodka, a cybersecurity attorney for the law firm Dickinson Wright, said the cost of a cyber insurance policy needs to be included in any small business’s budget.
“The market is growing and small businesses have been taking steps to protect themselves,” said Stanard. “But this [cyber insurance] is still a very young product. The policies can be complicated. It’s hard to distinguish what one might cover and what another won’t.”
See related: Business identity theft poses a growing threat
David Dufour, an expert on cyber insurance and vice president of engineering for Webroot, a cybersecurity provider, said small business owners need to consider several factors when determining if they need a cyber insurance policy.
All businesses today should install security software to help keep malware and viruses away from their computers. They should also invest in training their employees to recognize and avoid online phishing attempts and other scams.
However, even the most expensive security tools might not be enough to prevent a data breach.
A cyber insurance policy can help, for example, pay for restoring a business’ operating systems after an attack.
Businesses that handle sensitive data from customers also need to take extra care to protect their information and make sure they are not violating any state or federal regulations.
A cyber insurance policy that provides protection can help in case businesses are sued by angry customers after a data breach.
See related: As data breaches increase, here’s how to cut your identity fraud risk
You can find cyber insurance from traditional insurance companies such as Nationwide, Travelers, The Hartford and AIG, all of which offer their own policies.
Donna Grindle, founder of Kardon, a Tucker, Georgia-based HIPPA consultant, said she and her staffers regularly advise small-business owners on the importance of cyber insurance policies. She said many of these policies start with $50,000 of coverage – which often isn’t enough.
“That can be blown through in a day because you have multiple lawyers, digital forensics, consultants, PR, tech staff, hardware or software expenses and much more to deal with on day one,” Grindle said.
When considering a policy, Grindle recommends businesses consider the type of data they store, the federal and state regulations that apply to that data and the importance of protecting their reputation.
The challenge lies in finding the right cyber insurance policy, Jodka said.
Remediation is another important part of a solid cyber insurance policy, Jodka said.
“You want remediation to be included” in your cyber insurance policy, Jodka said. “It’s not just about patching the breach. It’s about putting in and paying for a cybersecurity infrastructure to make your system better than it was prior to the breach.”
This coverage will reimburse small-business owners for the losses they suffer if their business goes down, even briefly, after an attack. It should also be a part of any cyber insurance policy, Jodka said.
See related: Retailers will lose billions to online fraud by 2023: Could a new Amex tool help?
Another issue for business owners: Cyber insurance policies often contain a list of steps owners must take to protect their data and operating systems.
“If business owners are not following these rules, their policy is void,” Dufour said. “A lot of people think they just buy a policy and they are automatically covered. That’s not necessarily true.”
Jodka said cyber insurance has become a necessity for all businesses today.
Your business might be protected by the top security software available. But that doesn’t mean an employee in your human resource department won’t accidentally click on an infected link that floods your computer system with malware, or that a manager won’t accidentally send your clients’ personal and financial information to a hacker.
“You can pump all the dollars you want in building out a security framework and infrastructure,” Jodka said. “But something can still happen. Human error could be involved. You need insurance to catch you when it happens.”
See related: Best cards for small businesses
The editorial content on this page is based solely on the objective assessment of our writers and is not driven by advertising dollars. It has not been provided or commissioned by the credit card issuers. However, we may receive compensation when you click on links to products from our partners.
Dan Rafter has covered personal finance for more than 15 years for publications ranging from The Washington Post and Chicago Tribune to Wise Bread, HSH.com and MoneyRates.com. His work has also appeared online at the Motley Fool, Fox Business, Huffington Post, Christian Science Monitor and Time.
03 Jun, 2020  0  Comments
NEW YORK: Protests continued for an eight straight day in United States on Tuesday with protesters and police clashing in New York over the death of an unarmed Africa American man in police... ...Read More
Deputy President William Ruto has on Tuesday held talks with the U.K High Commissioner Jane Marriott at his Karen office.
The two leaders spoke on coronavirus, a common pandemic affecting... ...Read More
What is Cybercrime? Definition and Examples
By now, most people are aware of the concept of cybercrime, but may not understand the full ramifications or the full cost of... ...Read More
26 May, 2020  0  Comments
If you think your personal information is secure, think again. Keeping your information safe is now the exception, not the rule. According to a recent Pew Research Center study, an... ...Read More
Sign up to receive our free newsletters!
We do not spam. We value your privacy!
© 2020 Just40days.com. All Rights Reserved. Developed by HariOm Technologies