CRA-5.8.29

Entire section

Custom print

Link

Text Only

Rich Text

Print

Location:

Versions

Jan 01 2020 - Mar 31 2023
Apr 01 2023

The cyber risk insurance policy, referred to in Paragraph CRA-5.8.28, may include some or all of the following types of coverage, depending on the risk assessment outcomes:

(a) Crisis management expenses, such as costs of notifying affected parties, costs of forensic investigation, costs incurred to determine the existence or cause of a breach, regulatory compliance costs, costs of analysing the licensee’s legal response obligations;

(a) Claim expenses such as costs of defending lawsuits, judgments and settlements, and costs of responding to regulatory investigations;

(b) Coverage for a variety of torts, including invasion of privacy or copyright infringement; and

(c) Coverages relating to loss of revenue due to interruption of data systems resulting from a cyber or denial of service attack and other costs associated with the loss of data collected by the licensee.

Amended: April 2023
Added: January 2020