Why are data breaches increasing?
Contributed by: MNP Cyber attacks and breaches are increasing with the rapid rate of digital adoption - and becoming more ...
Cyber Insurance
Protect your practice from the devastating effects of cyber crime.
Cyber security attacks are on the rise and dental practices are a tempting target for cyber criminals. Your patients expect you to safeguard their private medical and financial data. You can keep your practice protected with CDSPI Cyber Insurance.
There is significant financial and reputational risk in losing your patients’ private financial and medical data. As a regulated profession, dentists can also face regulatory fallout because of a cyber breach. CDSPI Cyber Insurance is an indispensable tool to help you deal with the fallout of a cyberattack.
Cybersecurity encompasses a set of technologies and network interface processes, as well as business practices, designed to safeguard your practice's network, programs, computers, and data against cyber-attacks. An integral aspect of your practice's security is staff training, recognizing that the most prevalent and straightforward method for malicious actors to gain access to systems often stems from employee oversight or carelessness.
Watch now: Protect Your Dental Practice from Cybercrime
Learn about the nuances of cybersecurity, common threats, and practical insights on how dentists can effectively protect themselves, hosted by CDSPI and guest speakers from BFL Canada and Beazley Canada.
The cyber insurance policies offered through this program are underwritten by Beazley Canada Limited and exclusively distributed by BFL CANADA Risk and Insurance Services Inc.
What is Cyber Insurance?
CDSPI Cyber Insurance is a comprehensive package of insurance coverages and support services designed specifically to support dental practice owners before, during, and after a cyber security incident.
Cyber Insurance is a product that enables businesses to mitigate the cost of cyber-crime activity like cyberattacks and data breaches. It protects organizations from the cost of internet-based threats affecting IT infrastructure, information governance, and information policy, which often are not covered by commercial liability policies and traditional insurance products.
Cyber Insurance covers the losses a practice may suffer because of a cyberattack. CDSPI Cyber Insurance coverage includes protection against the loss of sensitive information through a data breach after your practice has permitted or failed to stop unsanctioned user access to your network. Cyber insurance may also reimburse you for losses including business interruption, notification costs, litigation costs, regulatory fines and penalties.
Features
Cyber Insurance protects your practice from financial losses and liabilities associated with cyber-related risks and data breaches.
Choice
Four levels of coverage to choose from to suit your practice.
Comprehensive
Up to $2,000,000 in coverage (maximums based on your practice revenue).
Client-focused
High level of customer service with timely advice and guidance from industry-leading cyber experts.
Convenient
A simple online application process.
Key Benefits of Cyber Protection
1.
Pre-breach mitigation services
- Staff training
- Response planning
- Regulatory compliance
2.
Coverage for third-party liability
- Patient data liability
- Regulatory penalties
- Media liability
3.
Crisis management services
- Data restoration
- Legal representation
- Third party negotiation
4.
Coverage for direct costs (first party)
- Breach cost and ransom
- Business income loss
- Digital asset replacement
Key Benefits of Cyber Protection
1.
Pre-breach mitigation services
- Staff training
- Response planning
- Regulatory compliance
2.
Coverage for third-party liability
- Patient data liability
- Regulatory penalties
- Media liability
3.
Crisis management services
- Data restoration
- Legal representation
- Third party negotiation
4.
Coverage for direct costs (first party)
- Breach cost and ransom
- Business income loss
- Digital asset replacement
FAQs
General Questions
A cyber-attack occurs when an external entity breaches your business's private network with the intent to disrupt, disable, or pilfer your company’s, employees', and patients' personal and confidential information. This illicitly obtained data may be exploited for ransom or disclosed to the public. Additionally, a cyber-attack can result in substantial reputational harm, as well as the theft of assets, identities, or financial resources.
Malware is used to disable and damage computers and networking systems.
Yes, there are several different types of cyber-attacks and criminals are getting better at finding ways to infiltrate systems all around the world. Types of attacks include: the Trojan Horse, Phishing, Unpatched Software and the most well-known of them all, Malware.
Multi-Factor Authentication (MFA) is a security measure that mandates the use of more than one authentication method from distinct categories of credentials to verify a user's identity. In addition to a password, users must provide another form of authentication, such as a fingerprint or a one-time code sent to their phone, to access an account or system.
MFA acts as an additional layer of security, thwarting unauthorized access even if passwords are compromised. Businesses use multi-factor authentication to validate user identities, ensuring quick and convenient access for authorized users. It acts as a primary defense against cybercriminals and is therefore essential to be eligible for cyber insurance.
Given that user accounts are the gateways to company resources, including internet and cloud-based applications such as email, calendaring, and office tools (e.g., Microsoft Office 365), attackers often target these accounts. MFA stands out as the most effective protection against such attacks, significantly reducing unauthorized access attempts by up to 99%.
CDSPI Cyber Insurance Questions
Yes. Cyber insurance protects you even if it has been caused by an employee.
In addition to coverage for malicious cyber-attacks, this policy provides Breach Response Services to the Insured Organization because of an actual or reasonably suspected Data Breach or Security Breach. This includes business interruption coverage and costs to recover data.
Insurers want to assess your risk of experiencing a cyber attack and satisfying these requirements demonstrate you have implemented risk management strategies. Cyber insurance policy is just one component of an overall risk mitigation strategy, not a replacement for cyber resilience.
If you contact BFL, you can speak to A Cyber Expert that will walk you through the requirements to obtain insurance, as well provide you with resources on how to ensure you meet them.
View a list of the CDSPI Cyber Insurance requirements. We encourage you to discuss this with your IT service provider.
One of the key features of the coverage with CDSPI Cyber Insurance is that the insurer will provide Privacy Breach Response Services. This includes notification services to individuals who are required to be notified by the Insured Organisation under the applicable Breach Notice Law. Breach Notice Law means any statute or regulation of any country, province, state, territory or jurisdiction that requires notice to persons whose Personal Data were accessed or reasonably may have been accessed by an unauthorised person. This includes the details of what information has been compromised to any patients who may be affected by the release of their information. For example, if names and addresses were compromised or if a more serious breach that included banking information, or medical data. In all cases, the Breach Response Team will work with the dentist to draft an appropriate letter or email to patients and any other interested parties.
| ALL OPTIONS | ||||
|---|---|---|---|---|
| Breach Response | ||||
| Notified Individuals | 25,000 Individuals | |||
| Legal, Forensic & PR | $100,000 | |||
| Retention | ||||
| Breach Response Retention | $2,500 | |||
| Legal Fee Retention | $1,250 | |||
| Notification Threshold | 10 Individuals | |||
| LIMIT | OPTION #1 | OPTION #2 | OPTION #3 | OPTION #4 |
| The Breach Response Limits Are In Addition to The Policy Aggregate Limit Of Liability | ||||
| Policy Aggregate Limit of Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Additional Breach Response Costs | ||||
| Additional Breach Response Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| First Party Loss | ||||
| Business Interruption Loss | ||||
| — Resulting from Security Breach | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| — Resulting from System Failure | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Dependent Business Loss | ||||
| — Resulting from Dependent Security Breach | $100,000 | |||
| — Resulting from Dependent System Failure | $100,000 | |||
| Cyber Extortion Loss | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Data Recovery Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Liability | ||||
| Data & Network Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Regulatory Defense & Penalties | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Payment Card Liabilities & Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Media Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| ECrime | ||||
| Fraudulent Instruction | $50,000 | |||
| Funds Transfer Fraud | $50,000 | |||
| Telephone Fraud | $50,000 | |||
| Criminal Reward | ||||
| Criminal Reward | $50,000 | |||
| Retentions 'Deductibles' | ||||
| Each Incident, Claim, or loss | $2,500 | |||
| Waiting Hours | 8 Hours | |||
| Annual Premium | $440 | $600 | $825 | $1,100 |
| ALL OPTIONS | ||||
|---|---|---|---|---|
| Breach Response | ||||
| Notified Individuals | 25,000 Individuals | |||
| Legal, Forensic & PR | $100,000 | |||
| Retention | ||||
| Breach Response Retention | $2,500 | |||
| Legal Fee Retention | $1,250 | |||
| Notification Threshold | 10 Individuals | |||
| LIMIT | OPTION #1 | OPTION #2 | OPTION #3 | OPTION #4 |
| The Breach Response Limits Are In Addition to The Policy Aggregate Limit Of Liability | ||||
| Policy Aggregate Limit of Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Additional Breach Response Costs | ||||
| Additional Breach Response Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| First Party Loss | ||||
| Business Interruption Loss | ||||
| — Resulting from Security Breach | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| — Resulting from System Failure | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Dependent Business Loss | ||||
| — Resulting from Dependent Security Breach | $100,000 | |||
| — Resulting from Dependent System Failure | $100,000 | |||
| Cyber Extortion Loss | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Data Recovery Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Liability | ||||
| Data & Network Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Regulatory Defense & Penalties | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Payment Card Liabilities & Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Media Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| ECrime | ||||
| Fraudulent Instruction | $50,000 | |||
| Funds Transfer Fraud | $50,000 | |||
| Telephone Fraud | $50,000 | |||
| Criminal Reward | ||||
| Criminal Reward | $50,000 | |||
| Retentions 'Deductibles' | ||||
| Each Incident, Claim, or loss | $2,500 | |||
| Waiting Hours | 8 Hours | |||
| Annual Premium | $550 | $750 | $1,025 | $1,375 |
| ALL OPTIONS | ||||
|---|---|---|---|---|
| Breach Response | ||||
| Notified Individuals | 25,000 Individuals | |||
| Legal, Forensic & PR | $100,000 | |||
| Retention | ||||
| Breach Response Retention | $2,500 | |||
| Legal Fee Retention | $1,250 | |||
| Notification Threshold | 10 Individuals | |||
| LIMIT | OPTION #1 | OPTION #2 | OPTION #3 | OPTION #4 |
| The Breach Response Limits Are In Addition to The Policy Aggregate Limit Of Liability | ||||
| Policy Aggregate Limit of Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Additional Breach Response Costs | ||||
| Additional Breach Response Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| First Party Loss | ||||
| Business Interruption Loss | ||||
| — Resulting from Security Breach | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| — Resulting from System Failure | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Dependent Business Loss | ||||
| — Resulting from Dependent Security Breach | $100,000 | |||
| — Resulting from Dependent System Failure | $100,000 | |||
| Cyber Extortion Loss | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Data Recovery Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Liability | ||||
| Data & Network Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Regulatory Defense & Penalties | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Payment Card Liabilities & Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Media Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| ECrime | ||||
| Fraudulent Instruction | $50,000 | |||
| Funds Transfer Fraud | $50,000 | |||
| Telephone Fraud | $50,000 | |||
| Criminal Reward | ||||
| Criminal Reward | $50,000 | |||
| Retentions 'Deductibles' | ||||
| Each Incident, Claim, or loss | $2,500 | |||
| Waiting Hours | 8 Hours | |||
| Annual Premium | $685 | $950 | $1,300 | $1,700 |
| ALL OPTIONS | ||||
|---|---|---|---|---|
| Breach Response | ||||
| Notified Individuals | 25,000 Individuals | |||
| Legal, Forensic & PR | $100,000 | |||
| Retention | ||||
| Breach Response Retention | $2,500 | |||
| Legal Fee Retention | $1,250 | |||
| Notification Threshold | 10 Individuals | |||
| LIMIT | OPTION #1 | OPTION #2 | OPTION #3 | OPTION #4 |
| The Breach Response Limits Are In Addition to The Policy Aggregate Limit Of Liability | ||||
| Policy Aggregate Limit of Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Additional Breach Response Costs | ||||
| Additional Breach Response Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| First Party Loss | ||||
| Business Interruption Loss | ||||
| — Resulting from Security Breach | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| — Resulting from System Failure | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Dependent Business Loss | ||||
| — Resulting from Dependent Security Breach | $100,000 | |||
| — Resulting from Dependent System Failure | $100,000 | |||
| Cyber Extortion Loss | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Data Recovery Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Liability | ||||
| Data & Network Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Regulatory Defense & Penalties | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Payment Card Liabilities & Costs | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| Media Liability | $250,000 | $500,000 | $1,000,000 | $2,000,000 |
| ECrime | ||||
| Fraudulent Instruction | $50,000 | |||
| Funds Transfer Fraud | $50,000 | |||
| Telephone Fraud | $50,000 | |||
| Criminal Reward | ||||
| Criminal Reward | $50,000 | |||
| Retentions 'Deductibles' | ||||
| Each Incident, Claim, or loss | $2,500 | |||
| Waiting Hours | 8 Hours | |||
| Annual Premium | $850 | $1,185 | $1,600 | $2,100 |
For revenues greater than $4,000,000, please contact BFL for custom pricing at 1.877.542.8838
Eligibility and How to Apply
The CDSPI Cyber Insurance application asks questions about your current computer systems. There are four critical security requirements that you must have in place to qualify for cyber insurance coverage. Before applying, we recommend you take the time to review the requirements with your IT professional to understand how to answer the questions.
To be eligible for CDSPI Cyber Insurance and our exclusive group rates, you must be a resident of Canada who is a member of a participating provincial/territorial dental association. CDSPI Cyber Insurance is not available to residents of Quebec.
If you do not currently meet the technological eligibility requirements, please contact BFL for further assistance on attaining these requirements for your dental practice at 1.877.542.8838 10:00 am to 6:00 pm EST.
Is your dental practice eligible for CDSPI Cyber Insurance?
To be eligible for CDSPI Cyber Insurance, dental practices must meet certain technological requirements. Find out if you qualify, or what steps are required.
For more information, please feel free to contact our partner BFL:
Phone: 1.877.542.8838 available Monday to Friday, from 10:00 am - 6:00 pm EST
Email: cdspi@bflcanada.ca
You Might Be Interested In
Cyber Awareness – Elevating Patient Privacy in Dental Communication with CDA Secure Send
In today's healthcare landscape, the need for efficient and secure communication is paramount. Gone are the days when sharing patient ...
How to Effectively Protect Your Dental Practice from Cyber Security Threats
Contributed by: MNP Cyber attacks and breaches are increasing with the rapid rate of digital adoption - and becoming more ...
6 Ways to Protect Your Practice from Cyber Attacks
Malware. Phishing. Password Attacks. Rogue Software. Every day, cyber attacks are becoming smarter and more aggressive. Your client list contains ...
We're Here to Help
The CDSPI Cyber Insurance program is exclusively distributed by BFL CANADA Risk and Insurance Services Inc. and underwritten by Beazley Insurance, Canada. The CDSPI Cyber Insurance Program is not available to residents of Quebec.
1 Bloomberg.ca. Ransomware Attacks on Industrial Firms Increased by 87% in 2022 - BNN Bloomberg
Please be advised that the program is available in limited jurisdictions and coverage is determined by the policy wording, including any endorsements. It may contain exclusions, limitations, and other provisions that are not referenced or are only briefly summarized on this website. For a comprehensive understanding of the coverage terms, definitions, requirements, conditions, limitations and exclusions, please refer to the policy wording. In situations that require specific advice, it is recommended to consult with a suitable financial, legal, accounting, insurance or tax advisor. If you have any questions related to the contents of this website, please contact CDSPI@bflcanada.ca.