Insurers Eyeing Cyber Coverage
Insurers are eagerly monitoring exponential growth in the tiny cyber coverage market but their lack of experience and skills handling hackers and data breaches may keep their ambitions in check.
High profile cases of hackers seizing sensitive customer data from companies, such as U.S. retailer Target Corp or e-commerce company eBay Inc, have executives checking their insurance policies.
Increasingly, corporate risk managers are seeing insurance against cyber crime as necessary budget spending rather than just nice to have.
The insurance broking arm of Marsh & McLennan Companies estimates the U.S cyber insurance market was worth $1 billion last year in gross written premiums and could reach as much as $2 billion this year. The European market is currently a fraction of that, at around $150 million, but is growing by 50 to 100 percent annually, according to Marsh.
Those numbers represent a sliver of the overall insurance market, which is growing at a far more sluggish rate. Premiums are set to grow only 2.8 percent this year in inflation-adjusted terms, according to Munich Re, the world’s biggest reinsurer.
The European cyber coverage market could get a big boost from draft EU data protection rules in the works that would force companies to disclose breaches of customer data to them.
“Companies have become aware that the risk of being hacked is unavoidable,” said Andreas Schlayer, responsible for cyber risk insurance at Munich Re. “People are now more aware that hackers can attack and do great damage to central infrastructure, for example in the energy sector.”
Insurers, which have more experience handling risks like hurricanes and fires, are now rushing to gain expertise in cyber technology.
“It is a difficult risk to price by traditional insurance methods as there currently is not statistically significant actuarial data available,” said Robert Parisi, head of cyber products at insurance brokers Marsh.
Andrew Braunbergon, research director at U.S. cybersecurity advisory company NSS Labs, said that some energy companies have trouble persuading insurers to provide them with cyber coverage as the industry is vulnerable to hacking attacks that could trigger disasters like an explosion in a worst-case scenario.
Pricing on policies for retailers has climbed in the wake of recent high-profile breaches at Target, Neiman Marcus, and other merchants, he added.
Big Boys Sign Consumer Privacy Pact
Six of the world’s top consumer technology companies have agreed to provide greater privacy disclosures before customers download applications in order to protect the personal data of millions of consumers, California’s attorney general said on Wednesday.
The agreement binds Amazon, Apple, Google, Microsoft, Research In Motion, and Hewlett-Packard — and developers on their platforms — to disclose how they use private data before an app may be downloaded, Attorney General Kamala D. Harris said.
“Your personal privacy should not be the cost of using mobile apps, but all too often it is,” said Harris.
Currently 22 of the 30 most downloaded apps do not have privacy notices, said Harris. Some downloaded apps also download a consumer’s contact book.
Google said in a statement that under the California agreement, Android users will have “even more ways to make informed decisions when it comes to their privacy.”
Apple confirmed the agreement but did not elaborate.
Harris was also among U.S. state lawmakers who on Wednesday signed a letter to Google CEO Larry Page to express “serious concerns” over the web giant’s recent decision to consolidate its privacy policy.
The policy change would give Google access to user information across its products, such as GMail and Google Plus, without the proper ability for consumers to opt out, said the 36 U.S. attorneys general in their letter.