0370 270 6000

Cyber liability and data security insurance


For all commercial clients and especially those operating in the technology field, data security and privacy concerns have become business critical risks.

The General Data Protection Regulation (GDPR), which in May 2018 will supersede the Data Protection Act 1998, will revolutionise data protection and has a potentially huge impact on UK and Ireland businesses. Organisations breaching the GDPR will face penalties of up to €20 million or 4% of global turnover, whichever is highest.

Our expert team of lawyers understand how the GDPR will impact the insurance sector and work closely with insurers and brokers in the sector to ensure they are handling data in their organisations and complying with the GDPR effectively.

What we do...

  • Regulatory concerns – we support our clients in all areas of regulatory compliance, from ensuring Draft and review of contracts to data management, including data sharing and marketing activities.
  • Cyber-crime and hacking – we ensure that advice following a breach is compliant within national and international laws. We can liaise with regulators and law enforcement, undertake reputation management advice, communicate with affected individuals and engage in legal proceedings against a service provider.
  • Technology E & O – we act for global data companies in respect of privacy implications of their day-to-day operations and development of new technology.
  • Privacy violations – we advise on regulatory compliance obligations and remedial action. We can take part in training exercises to consider potential scenarios and prepare a robust plan for future breaches.

Related resources

Legal updates

Legal and regulatory monthly update - September 2019

The latest update covering delegated authority, insurance product development, the senior insurance managers regime, data protection, operational control frameworks, Lloyds market, and horizon scanning.


Published articles

Privilege prevails

The Court of Appeal recently allowed an important appeal relating to the disclosure of documents created in the build up to the eventual proceedings brought by the Serious Fraud Office (SFO).


Legal updates

E-technology: work smarter, not harder

Despite the Jackson reforms attempting to persuade parties to move away from standard disclosure and utilise the menu of options available, reducing the consequential costs of disclosure, there has still been a reluctance to depart from that procedure and make use of the alternative disclosure options available.


Legal updates

Enforcement notice issued against council by the ICO due to subject access request backlog

An enforcement notice has been issued by the Information Commissioner’s Office (the ICO) under the Data Protection Act 1998 which requires the London Borough of Lewisham to clear a backlog of subject access requests by 15 October 2018.


What the directories say...

Recent experience

Related opinions