Cyber

The Cyber Liability program provides coverage for information security & privacy liability, privacy notification costs, regulatory defense & penalties, website media content liability, cyber extortion, first party data protection & business interruption losses.

PERMA group purchases this coverage through PRISM. The policy provides an $18M limit for each PERMA member with a $115M program aggregate. Members have a $50,000 retention. Moreno Valley, Murrieta, Perris, and VVTA purchased a buy down retention option and each have a $5,000 retention.

The program provides its insureds with access to a breach response team consisting of privacy expert attorneys, forensic specialists to determine scope of breach, notification vendors, and credit monitoring services at preferred rates.  Additionally, a website (beazleybreachsolutions.com) is available which provides resources/tools to understand and keep up with the ever-changing world of technology and cyber related exposure, including sample best practices policies.

Cyber criminals do not discriminate; they target vulnerable computer systems. The “Stop, Think, Connect toolkit” provides resources for all segments of our community. Additional resources are also available in PERMA’s policy and resource library.

Cyber Security breaches are on the increase. PRISM has partnered with KnowBe4 for a new Cyber Security Training program for members, for better management of IT security problems such as social engineering, spear phishing and ransomware attacks. Learn more today.

Additional Beazley Resources and Tools:

• Risk Management Tools and Resources (Trainings, articles, videos, best practices guides)
• Cyber Action Plan – You can fill this out and get Cyber Security recommendations based on their responses and personal needs. It’s similar to a quiz you would take to get matched with the right product. A cyber action plan with recommendations will be provided with this.
• Data Recovery Guide
• Cyber Business Interruption Guide
• Incident Response Planning
• Data Classification
• Data Privacy Risk Assessment
• Cyber Risk Management Tools (Updates/trends and Webinars)

The eLearning site is also available at Training and Online Learning. If you click the link to the 3^rd party site Beazley Breach Solutions, there is an area where an organization access code should be entered. First-time users simply need to create a 6-digit alphanumerical code and enter that in. This code will only be used the first person at an organization to register. Once registered and becoming the Site Admin, they will be generated a different code related to the e-learning site to share with employees. That separate second code has always been historically different from the organization Access code because it is created by the 3^rd party e-learning site.

Risk Management Offerings. It only applies to program members who purchase a BBR endorsement and is based on the BBR endorsement premium.

Report a Loss

Cyber policies are written on a “Claims Made and Reported” coverage form which means that all claims and known incidents that could give rise to a claim must be reported to the Insurer during the policy period in order for coverage to apply.  Below is the definition of a “CLAIM” according to Lloyd’s of London (Beazley Syndicate).  Please review this definition carefully to understand what should be reported:

Claim means:

1. a written demand received by any Insured for money or services;
2. with respect to coverage provided under the Regulatory Defense & Penalties insuring agreement only, institution of a Regulatory Proceeding against any Insured; or
3. with respect to coverage provided under part 1 of the Data & Network Liability insuring agreement only, a demand received by any Insured to fulfill the Insured Organization’s contractual obligation to provide notice of a Data Breach pursuant to a Breach Notice Law;

Multiple Claims arising from the same or a series of related, repeated or continuing acts, errors, omissions or events will be considered a single Claim for the purposes of this Policy.  All such Claims will be deemed to have been made at the time of the first such Claim.

In order to automatically preclude known incidents from being considered for coverage due to late reporting, anything that fits within the definition of “CLAIM” needs to be reported to Lloyd’s of London (Beazley Syndicate) by June 30, 2024.  We strongly recommend that you check with anyone in your entity that may know of or have knowledge of a “CLAIM.”  There is no penalty for reporting any claim or known incident.  Please report any incidents that could possibly give rise to a cyber claim to the following contacts:

Beazley Group
45 Rockerfeller Plaza, 16^th Floor
New York, NY 10111
Voice: (866) 567-8570 Fax: (546) 378-4039
Email: bbr.claims@beazley.com

Elaine G. Tizon, V.P. CISR, E-mail: elaine.tizon@alliant.com
Donna Peterson, E-mail: donna.peterson@alliant.com
560 Mission Street, 6^th Floor
San Francisco, CA 94105
Voice:  (415) 403-1458 Fax:  (415) 403-1466