Security and privacy

Company data and intellectual property may be your business’s most valuable assets. Safeguard your company’s sensitive information with seamless strategies and integrated coverages. Zurich specialists are industry leaders in breach insurance protection and data management solutions.


Why Zurich?

Zurich’s risk management team is dedicated to cyber-related issues and produces predictive analytics in collaboration with our claims team and underwriters. When Zurich professionals apply these insights to your company, the wide range of cyber risk and privacy issues can be exposed.

Our strategic relationships provide a consultation after our qualified customers experience a breach. These half-hour consultations with breach specialists help develop an action plan on best steps to help mitigate damage.    

server blue wires

Security and privacy solutions

Security and privacy protection policy

Zurich’s security and privacy (S&P) protection policy provides state-of-the-art coverages, including:

Third party coverage

  • Security and privacy liability coverage
  • Regulatory proceedings defence costs
  • Civil fines and penalties coverage
  • Internet media liability coverage

Privacy coverage

  • Forensic investigation expenses
  • Legal and public relations expenses
  • Notification expenses
  • Credit and identity monitoring costs
  • Identity restorations and identity theft insurance costs 
  • Call center costs
First party coverage

  • Digital asset replacement expense coverage
  • Business income loss and dependent business income loss coverage
  • Cyber extortion threat and reward payments coverage

Our policy helps businesses manage the evolving risk and financial impact of data breaches with over 25 built-in coverage enhancements and international program capabilities. Enhancements include:

  • Expanded privacy breach costs to help mitigate the potential for third-party S&P liability claims
  • Expanded definition of company’s IT network, which now includes bring-your-own devices (BYODs)
  • Extended coverage of cyber extortion to cover threats made by employees without the cooperation of an executive officer
  • New category of healthcare record remediation responds to Protected Health Information (PHI)
  • Inclusion of outsourced service providers beyond information technology
  • Only the single highest retention is applied when multiple insuring agreements are triggered

> Read Zurich's security and privacy protection policy fact sheet 

> Read Zurich’s security and privacy protection policy brochure 

> Learn more about Zurich’s security and privacy competitive advantage

NetDiligence™

The NetDiligence™ cyber risk assessments analyzes your company’s risk profile. Zurich has partnered with NetDiligence™ to help you understand the exposures your business faces so you can implement a strategy of comprehensive data security.

The assessment gives your company a 360-degree view of your people, processes and technology. The assessment allows your company to:

  • Reaffirm that reasonable practices are in place
  • Harden and improve your security
  • Qualify for network liability and privacy insurance
  • Bolster your defence posture in the event of class action lawsuits 
NetDiligence, Inc. is not a subsidiary or affiliate of Zurich and use of its products and services are independent of, and not included within, Zurich’s products or services. Zurich expressly disclaims any and all damages and other costs that may arise related to the use of or reliance upon the products, services, representations or warranties made by or on behalf of NetDiligence, Inc.


eRiskHub®

eRiskHub® is a valuable resource in preparing for a data breach. From prevention tips to response recommendations, eRiskHub® will assist with any cyber situation. Zurich's eRiskHub® is available to all Zurich Canada Security and Privacy customers.

> Learn more about Zurich’s eRiskHub®

Data breach response resources

Following a breach, obtaining a technical and legal provider with the proper experience is important. Zurich offers its qualified customers a complimentary half-hour consultation with an experienced cyber-breach coach.

In addition, Zurich qualified customers can have access to a privacy lawyer to help them assess whether or not a computer forensics investigation is needed, or whether breach notifications are required. Zurich recommends the following approved third-party providers*:

Data breach coaches: Dolden Wallace Folick, LLP 

Data breach response services:

  • AllClear ID: Available services include notification and call centre, and credit/identity monitoring/fraud remediation
  • ID experts: Available services include forensic investigation and notification and call centre
  • NPC’s Immersion Data Breach Response: Available services include notification and call centre
  • Kroll, Inc.:  Available services include forensic investigation, notification and call centre, and credit/identity monitoring/fraud remediation
*The third-party service providers are not subsidiaries or affiliates of Zurich and use of their products and services are independent of, and not included within, any Zurich’s products or services. Zurich expressly disclaims any and all damages and other costs that may arise related to the use of or reliance upon the products, services, representations or warranties made by or on behalf of the third-party service providers.