Cyber insurance

Suspect a cybercriminal has tricked you or broken through your cyber security? Call the experts, 24/7. They'll be on it, helping you to recover and stay in business.

UK experts on hand, 24/7, helping you recover your finances, reputation and systems following a cybercrime. From just £5.53 a month.

10% of customers paid £67 or less for a 12 month policy between 2 January 2020 and 17 September 2020. We offer 0% APR on your monthly direct debit payments in the first year. Subject to credit agreement, over 18s only.

  • If you hold sensitive customer data, process payments online or just want peace of mind, cyber insurance should be considered.

    Available on new and renewal policies only. For Retail and Office & Professional customers only.

  • Choose from £25,000, £50,000 or £100,000 of cyber cover.

    £500 excess applies to any claim.

  • Get 10% off business insurance if you're already a Direct Line customer.

    Discount applies to your new business insurance policy. Subject to minimum premiums.

  • We won't be beaten on price. We'll beat your new business insurance quote or renewal premium from any other insurer.

    New customers only. Cover on an equivalent basis to ours. Qualifying criteria apply. Terms & Conditions.

Get a quote
or call us on 0345 878 5603

What is cyber insurance?

If you're a victim of a cybercrime, like a website hack, data breach or been tricked by phishing, then our Cyber Risks cover will help you take control, deal with the fallout and help you recover in three ways:

Recover financially

  • Covering loss of business income if your systems are attacked
  • Covering recovery costs, like fixing damage to your computer systems or data restoration
  • Covering fines (where insurable by law) and compensation costs.

Recover your reputation

  • You get access to public relations and crisis management experts to minimise damage to your brand and business.

Recover your systems and help prevent future incidents

  • Technical experts will help fix your IT issues and provide advice on how to prevent future cyber incidents.

Why do I need cyber insurance if I have cyber security?

With 43% of micro and 62% of small businesses identifying a cyber security breach or attack in the last 12 months, cyber security is essential. But cyber criminals can be clever. Catching you off-guard and tricking you in to doing something you shouldn't, like opening an attachment in a fake email, or finding a way through your cyber security. If this happens and they get their hands on your sensitive customer data or access to your bank account, the impact on your business could be devastating. That's why it's important to consider cyber insurance.

We spoke to an ethical hacker to find out why cyber criminals target small businesses and the things you and your employees can do to prevent attacks.

Cyber Security Breaches Survey 2020

Get a quote
or call us on 0345 878 5603

How does cyber insurance work?

  • As soon as you suspect you've been a victim of cybercrime, contact the experts straight away, anytime of day or night.
  • They'll determine if a cyber incident has occurred.
  • If one has, they'll take the necessary steps to control the incident and help you recover.

What does cyber insurance cover?

Our Cyber Risks insurance will cover you for:

1. Computer system damage

If your system is attacked, we will cover the costs of:

  • Fixing any damage to computer systems belonging to you or a service provider. We will also cover data restoration or re-creation.
  • Locating and removing a virus from your computer system.
  • Hiring professional consultants to provide advice on preventing future incidents.
  • Loss of business income and the additional expense needed to minimise the impact.

2. Cyber crime

We will cover your financial loss following:

  • Fraudulent data manipulation in your computer system (or your service provider's system which results in a loss to you), resulting in money being taken from an account or assets being transferred without your permission.
  • Your computer system being hacked. We'll cover any additional fees you are required to pay to your telephone service provider.
  • A cyber attack or release. If anyone threatens to perform a cyber attack or release, publish or manipulate data that would cause reputational damage, we will cover the cost of a response. We will also cover you if they carry out their threats. This includes payment of a ransom demand, if approved by us.

3. Data breach expenses

In the event of a data security breach, we will cover the following expenses:

  • Hiring professional IT services to help respond if you have unintentionally failed to keep your data privacy obligations.
  • Informing the data privacy regulator and other affected third parties.
  • Providing support services to third parties affected by the security breach.
  • Public relations and crisis-management experts to help you minimise damage to your brand, business operation and reputation.

4. Cyber liability

We will cover damages payable to a third party if:

  • You or your service provider fail to prevent a data breach.
  • You unintentionally transmit or fail to prevent a virus, hacking attack or denial of service attack from your computer system.
Get a quote
or call us on 0345 878 5603

Frequently asked questions

  • Q How much does cyber insurance cost?

    From £5.53 a month, with the average monthly premium being £9.05 for new customers in 2020.

    10% of customers paid £67 or less for a 12 month policy between 2 January 2020 and 17 September 2020. We offer 0% APR on your monthly direct debit payments in the first year. Subject to credit agreement, over 18s only.

  • Q Do I need cyber security as well as cyber insurance?

    Yes. To get our Cyber Risks cover you need to make sure your computer system is protected by anti-virus software with updates at least every 30 days.

    If your business has an annual turnover of more than £250,000, you need to update your anti-virus software at least every 7 days.

  • Q How often do I need to back-up my data?

    You need to back-up your data at least every 30 days to get our Cyber Risks cover. But it's good practice to back up as often as possible. So that if it is needed, you've got the most up to date data to restore from.

    If your business has an annual turnover of more than £250,000, you need to back-up at least every 7 days.

  • Q Are there any other steps I need to take to keep my business secure?

    Yes. You need to have procedures in place to make sure that requests are checked before making payments online or transferring funds. For example:

    • Making sure payments above a specific amount are authorised by more than one person
    • Contacting a supplier to confirm that payment requests or bank account changes received from them are genuine.
  • Q Do I need to contact the police if I'm a cybercrime victim?

    Yes. As soon as a cybercrime has happened, you need to contact the police straight away about any loss or damage the cybercrime has caused and get a crime reference number.

  • Q What are the most common cybercrimes?

    The nature of cybercrime has changed in recent years, with the most common cyber attack on UK businesses being phishing.

    But viruses, malware, hacking and ransomware cyber attacks are still a problem and businesses need to guard against them.

    Phishing

    Usually deceptive emails that involves tricking someone into opening an attachment or clicking on a link that downloads malicious software. Or, where the cybercriminal learns about the victim to impersonate someone they know and trust to get them to do something they shouldn't.

    Malware

    It's software that gets installed on to devices or a network that can take over the device or system and cause damage to data.

    Hacking

    This is where a highly skilled hacker deliberately finds a way in to a business's system. Once in, they can do things like steal and share data or hold a business to ransom.

    Ransomware

    Where people are tricked in to downloading malicious software that can paralyse a business's network. The cybercriminal can then demand a ransom to remove the software.

  • Q What are the signs that I’ve been a victim of a cyber attack?

    These aren't exhaustive, but you should be suspicious and investigate further. Or contact our Cyber Risk insurance experts to help you out.

    Email

    • Your password seems to have changed and you need to reset it
    • Funny things are happing to your mail boxes that you don't recognise
    • Your contacts have received peculiar emails from you

    Being held to ransom

    • Threats from someone saying they've got hold of your sensitive customer information and are prepared to make it public on the internet, which may or may not be true.

    Banking

    • Money that has left your account and you don't know why
    • Someone you sent money to hasn't received it
    • A payment to your business that hasn't been received

    Network and data problems

    • Files have been encrypted
    • You're finding it difficult to access data stored in the cloud or data is missing
    • Your website's not loading for your customers, even after many attempts.