As technology evolved in the late 1990s, technology-related risks evolved with it. Growing technology companies wanted to transfer some of this risk, leading to the development of the first cyber insurance technology coverage. Many of the early technology companies also had growing media and content-related exposure. As such, the first cyber insurance policies were written to address this exposure and focused on online content or software. Over time, the technology and accompanying policies have evolved extensively, and this should continue for the foreseeable future.
The first cyber and internet cyber insurance policies started to appear in the market in the late 1990s. Some were media policies that began covering online media, while others were errors in data processing (EDM) policies. Early cyber insurance coverage generally evolved from professional liability policies for software and media risks.
In the early 2000’s, online media policies started to cover unauthorized access, network security, and virus-related claims. In addition, these policies usually did not include first-party coverage. In the mid-2000’s, these policies evolved to include some first party coverage.
In the late 2000’s, many of the coverage being offered were only available with a small sub-limit. This is because carriers and reinsurers were concerned about pricing for new exposures. All of this made it difficult for people to get the limits they wanted for certain exposures. It also made excess placements difficult, as the markets were not comfortable with other carriers’ forms, pricing, sub-limit structure, and the fact they offered drop-down limits over the sub-limits.
In the 2010’s, the number of carriers with stand-alone products grew to over 50; today it is more than 60. Large claims and breaches became more commonplace.
Today, products and appetite have continued to evolve along with the services included with the policies. The leading carriers are in a better position to take a risk based on their experience and size of their books. The range of pricing is wide; it’s not uncommon to see one carrier provide a broad quote and another offer more limited one at three to four times the premium. It’s also constantly shifting; as the same carrier that aggressively quoted a risk last year could decline the risk this year.
There are large differences between companies in terms of which cyber insurance markets are the best fit. The right fit will vary not only by industry but by size as well. The markets that are most competitive for small retail are not the best for larger retailers. The same is true for healthcare, professional service firms, etc.
The application process will also vary greatly by market and size of the risk. You will see some applications with just five questions while others will have 100 questions and require a conference call with a third party risk assessment firm. You will also see policies and add-on coverage that does not really cover that much, combined with clients that may not think they have much exposure.
For the foreseeable future, you can expect to see more of the same. Changing appetite, a wide variety of forms, large differences in pricing, carriers leveraging technology to assist in underwriting, and new risk management services being added to policies are the norm in cyber insurance.
Cyber insurance coverage cannot be ignored; in fact, it should be addressed with every client. Cyber insurance is a volatile market, so we recommend planning to work with someone who has real expertise that has a wide range of market relationships. Whoever that expert is, they should be able to dissect differences in the forms and help you explain the coverage and exposure to your client, selling the coverage for you. To learn more, give Absolute Insurance Brokers a call at 1-866-941-2266 or email us.