Cyber Liability

Not If, But When

How Are You at Risk?

Coverage Components

Patient notification & credit monitoring costs

Legal counsel & forensic expert services

Business interruption

Regulatory fines & penalties

Cyber terrorism & cyber extortion

Data recovery costs

Public relations & advertising support

Call center and website support

Bodily injury coverage

Business interruption and cyberextortion coverage

Protecting Your Practice

Evaluate Technology and Data Security Practices -

Enhance safeguards to limit unnecessary or inappropriate access to and disclosure of protect health information

Limit Access to Privileges -

Access from workstations and programs should be limited to the appropriate level for healthcare professionals and be monitored and controlled to prevent unauthorized access 

Create HIPAA Compliant Contracts -

For business associates who create, receive, maintain or transmit electronic protected health information. Medical billing services, hardware and software vendors, external consultants, and lawyers should all be considered business associates

Routine Evaluations -

Ensuring the practice is compliant with HIPAA and their practice procedures/processes to help catch problems early on

Have a Worst-Case Scenario Plan -

Outline who should be contacted and establish a timeline of informing patients of a breach

Purchase Additional Insurance -

Having additional insurance not only puts your mind at ease, it can assist in responding to the breach in a timely manner with the appropriate professionals. Most standard malpractice insurance carriers have basic limits of liability to respond to a data breach but these may not be sufficient coverage in the event of a breach. 

Interested in learning more?
Visit NAS Insurance or Beazley Breach Response to stay informed on the latest in Cyber Insurance and the risks your practice could face.