Security and privacy

Company data and intellectual property may be your business’s most valuable assets. Safeguard your company’s sensitive information with seamless strategies and integrated coverages. Zurich specialists are industry leaders in breach insurance protection and cyber risk management solutions.

Why Zurich?

Zurich’s risk engineering team is dedicated to cyber-related issues and produces predictive analytics in collaboration with our claims team and underwriters. When Zurich professionals apply these insights to your company, the wide range of cyber risk and privacy issues can be exposed.

Our strategic relationships provide breach coaching and employee training programs to our qualified customers that help build awareness to ensure compliance with local regulations.

server blue wires

Senior Vice President, Specialty Products at Zurich North America

Catherine Mulligan is the Head of Professional Liability for Zurich North America, where... About this expert

Security and privacy solutions

Security and privacy protection policy

Zurich’s Security and Privacy (S&P) Protection policy provides state-of-the-art coverages, including:

Third Party coverage

  • Security and Privacy Liability coverage
  • Regulatory proceedings defense costs
  • Civil fines and penalties coverage
  • Internet media liability coverage

Privacy coverage

  • Forensic investigation expenses
  • Legal and public relations expenses
  • Notification Expenses
  • Credit monitoring costs

First Party coverage

  • Digital asset replacement expense coverage
  • Business income loss and dependent business income loss coverage
  • Cyber extortion threat and reward payments coverage

Our policy helps businesses manage the evolving risk and financial impact of data breaches with over 25 built-in coverage enhancements and international program capabilities. Enhancements include:

  • Expanded privacy breach costs to help mitigate the potential  for third-party S&P liability claims
  • Expanded definition of company’s IT network, which now includes bring-your-own devices (BYODs)
  • Extended coverage of cyber extortion to cover threats made by employees without the cooperation of an executive officer
  • New category of healthcare record remediation responds to Protected Health Information (PHI)
  • Inclusion of outsourced service providers beyond information technology
  • Only the single highest retention is applied when multiple insuring agreements are triggered

NetDiligence®

The NetDiligence® Cyber Risk Assessments analyzes your company’s risk profile. Understand the exposures your business faces so you can implement a strategy of comprehensive data security.

The assessment gives your company a 360-degree view of your people, processes and technology. The assessment allows your company to:

  • Reaffirm that reasonable practices are in place
  • Harden and improve your security
  • Qualify for network liability and privacy insurance
  • Bolster your defense posture in the event of class action lawsuits 

NetDiligence, Inc. is not a subsidiary or affiliate of Zurich and use of their products and services are independent of, and not included within, Zurich’s products or services. Zurich expressly disclaims any and all damages and other costs that may arise related to the use of or reliance upon the products, services, representations or warranties made by or on behalf of NegDiligence, Inc.


eRisk Hub®

eRisk Hub is a valuable resource in preparing for a data breach.  From prevention tips to response recommendations, eRisk Hub® will assist with any cyber situation.  Zurich's eRisk Hub®
is available to all Zurich North America Security and Privacy customers.  


Data breach response resources

Following a breach, obtaining a technical and legal provider with the proper experience is important. Zurich offers its qualified customers a complimentary half hour consultation with an experienced cyber-breach coach.

In addition, Zurich qualified customers can have access to a privacy attorney to help them assess whether or not a computer forensics investigation is needed, or whether breach notifications are required. Zurich recommends the following approved third party providers*:

Data Breach Coaches:

Data Breach Response Services:

  • AllClear ID (U.S. and Canada) Available services include notification and call center, and credit/identity monitoring/fraud remediation
  • General Dynamics Fidelis Cybersecurity Solutions (U.S.) Available services include forensic investigation
  • ID experts (Canada) Available services include forensic investigation
  • Identity Theft 911 (U.S.) Available services include notification and call center, and credit/identity monitoring/fraud remediation
  • Immersion, Ltd. (U.S.) Available services include notification and call center, and credit/identity monitoring/fraud remediation
  • Intelligent Business Concepts, Inc. (U.S.) Available services include notification and call center, and credit/identity monitoring/fraud remediation
  • Kroll, Inc. (U.S.) Available services include forensic investigation, notification and call center, and credit/identity monitoring/fraud remediation


*The third party service providers are not subsidiaries or affiliates of Zurich and use of their products and services are independent of, and not included within, any Zurich’s products or services. Zurich expressly disclaims any and all damages and other costs that may arise related to the use of or reliance upon the products, services, representations or warranties made by or on behalf of the third party service providers.