From 25th May 2018, UK businesses will need to comply with the new EU General Data Protection Regulations (GDPR). We explain how they could also affect your insurance cover.
By now you are probably aware of the practical changes you need to make in advance of the new legislation, but your data processing practices are not the only thing you may have to amend.
Certain aspects of the GDPR might also affect your insurance. EIC Insurance Services outlines three possible areas of adjustment:
The GDPR makes your business more responsible for handling and processing data. More stringent requirements to report serious breaches, and higher fines for breaking the rules, may place greater responsibility on senior individuals at the top of your company.
As a result, having Directors’ and Officers’ (D&O) cover in place will be more vital than ever. This cover protects decision makers from being held personally liable for cyber-breaches or neglecting cyber compliance. Without it, they could have to defend allegations with their personal finances.
If you already have D&O cover in place, it is a good idea to check that your liability policy does not exclude losses relating to data breaches or cyber issues. The team at EIC Insurance Services can help look over your current cover and help you to identify any weaknesses in this area.
“Silent” cyber exposures refer to potential cyber-related losses which are not covered, due to insurance policies that are not specifically designed to cover cyber risks.
For example, imagine an organisation was infected by malware which caused electronically-controlled manufacturing equipment to fail, resulting in injuries to factory-floor employees. If their manufacturing insurance does not specifically include cyber threats, they may not be able to claim on it.
The best way to ensure your business is fully protected from data-related losses is to arrange a dedicated cyber liability policy. These are surprisingly affordable, and becoming a necessity as businesses across all industries handle data.
For an in-depth review of your organisations’ exposure to cyber risks, or indeed your overall insurance arrangements, please feel free to get in touch with the office either via email or by calling us on 01442 286910.