Insurance as a cybersecurity and privacy risk management tool

Éloïse Gratton October 19, 2021

While organizations primarily manage cybersecurity and privacy risks through practices, policies and procedures, organizations often look to manage residual risks through insurance. Two recent Canadian cases illustrate how traditional insurance policies might provide limited or no coverage for losses and liabilities resulting from cybersecurity and privacy incidents.

Organizations that seek to manage residual cybersecurity and privacy risks through insurance should seek expert advice to ensure that the scope and amounts of insurance coverage are adequate to meet their requirements.

Read my colleague Danielle Windt’s bulletin on this topic.

This content has been updated on October 19, 2021 at 16 h 57 min.

Éloïse Gratton

Privacy & Data Protection Law

Insurance as a cybersecurity and privacy risk management tool

Data governance and privacy risks in Canada: A checklist for boards and c-suite

An Update on New Québec Confidentiality Incidents and Record-Keeping Requirements

The inside scoop on how to become a privacy lawyer: 10 tips from the top

Preparing for the Privacy Reform in Canada

Getting Ready for Québec’s New Privacy Law in 2023 (Part 1): Using what we know so far

Getting Ready for Quebec’s New Privacy Law in 2023 (Part 2): Navigating uncertainty in the Law

Une fugitive recherchée depuis 30 ans, capturée à Berlin grâce à la reconnaissance faciale

CBC Windsor Morning Radio Show

La Cour suprême vient compliquer les cyberenquêtes

Une fugitive capturée à Berlin grâce à la reconnaissance faciale

Aide-mémoire en matière de protection de la vie privée et de sécurité des renseignements personnels

Lucky 7 data privacy and security cheat sheet