Cyber Liability Waiver

We continue to see an increase in cybersecurity breaches, both locally and nationally.  Enduris helps protect members from the excessive costs of a cyberattack with a policy that includes Cyber Coverage.  Members with property coverage have limits up to $1 million per occurrence, $2 million per member, per year.  Members without property coverage have limits up to $100,000 per year.  The deductible for cyber claims is a 20% co­pay, up to $100,000.

Enduris has put in effect Cybersecurity guidelines that, if followed, will allow members to have this co­pay reduced or even waived.  In order to be eligible for consideration for a reduced co­pay, the member must provide evidence that implementation of the following Enduris recommended "minimum security expectations" were in place prior to the cyber breach.

Minimum Security Expectations:

  • Accurate inventory of electronic devices
  • Secure and encrypted Wi-Fi networks
  • Anti­virus, Mal­ware, Spy­ware software installed and updated on all entity devices
  • Firewall software installed at perimeter or on all entity devices
  • SPAM filter implemented on all district email accounts
  • Unique passwords for all users
  • Frequent back­up on a scheduled basis, minimum of one copy stored offsite (cloud storage is acceptable)

Additionally, timely reporting of an incident at first discovery is a critical component of the coverage trigger – whether or not you have all the details or even know if there is yet a claim.  A claim, potential claim, or incident shall be reported at the member’s earliest opportunity.  Neglecting to give timely notification of an incident could jeopardize coverage.  It is important to stay current with Cybersecurity best practices, knowledge of the law for protecting individual’s private information, and your cyber insurance coverage.  The laws regarding notifications and security breaches are RCW 19.255.010 and RCW 42.56.590.  

For more information about Cyber Coverage or implementing best practices, please contact our risk management department.