CYLO Cyber Insurance Scheme

Protect your design, engineering and white collar construction business against potential cyber threats.
Get a Quote

Cyber is a big risk for small businesses

Tailored solutions to safeguard your business

Advanced cyber security technology embedded into a cyber insurance policy is critical for coverage against today’s cyber attacks.

Yesterday’s passive approach to cyber insurance is no match for the determination and sophistication of today’s cyber criminals – which is why we’ve partnered with CYLO to deliver tailored insurance solutions to safeguard your business against rising cyber risks.

CYLO is backed by IAG, one of Australia’s largest insurers. It has partnered with UpGuard to provide a comprehensive, non-obtrusive online risk monitoring service that identifies vulnerabilities through a risk score.

Policy Options & Inclusions

For our Design and Engineering clients, we are offering two tailored cyber insurance solutions.

CyberGO – $695

A basic coverage plan that protects essentials aspects of your business, including:

  • System Damage: Covers the cost of repairing or replacing your computer systems and records following a cyber event, such as a malware attack.
  • Business Interruption: Protects you from income loss due to a cyber event that disrupts your business operations for more than 12 hours.
  • Cyber Extortion: Covers ransom payments and associated costs from ransomware or similar attacks (subject to legal restrictions).
  • Privacy Breach Notification & Loss Mitigation: Helps you meet legal obligations after a data breach and minimises further risk.
  • Privacy Fines & Investigations: Covers fines related to breaches of privacy regulations, subject to legal limitations.

CyberSecure – $895

A comprehensive plan that includes everything in CyberGO, plus:

  • Brand Protection: Covers public relations expenses to mitigate damage to your brand caused by a cyber event.
  • Personal Reputation: Protects staff reputations in the event of a cyber incident impacting them directly.
  • Social Engineering & Fraud: Protects against losses due to fraudulent emails or phishing schemes.

Cover Limit

Both CyberGO and CyberSecure options provide a coverage limit of $50,000, with higher limits available upon request if required outside of the scheme.

CYLO cyber insurance is split between two coverage options – first-party cover and third-party cover, which are outlined in the table below.

A table comparing cover limits for "CyberGO" and "CyberSecure" policies, with three sections: First Party Covers, Privacy Remediation & Loss Mitigation, and Third Party Covers. Each section lists various cover types and their coverage amounts or availability.

Qualification Criteria

To be eligible for either CyberGO or CyberSecure, your business must meet the following criteria:

  1. Have a turnover of less than $1,000,000 per annum
  2. Be an eligible design, engineering and/or white collar construction professional
  3. Malware protection is installed across all devices (workstations, servers, laptops, etc.).
  4. Regular backups of business-critical data are performed at an offsite / cloud location.
  5. All business-critical software and hardware are regularly updated and patched.
  6. No previous claims in the past three years, nor aware of any potential circumstances that could arise.
  7. Achieve an UpGuard score of 500+ (this scan is done once a quote form has been completed, or it can be arranged separately by completing your details here)

If you are unsure of whether you will meet these requirements, please feel free to still complete the quote form, or alternatively contact us for further assistance.

Get a Cyber Insurance Quote

To arrange your quote, complete the form using the button below. To request an UpGuard Cybersecurity report, click here.

Get a Cyber Insurance Quote

FAQ’s

Why do I need Cyber Insurance?

Cyber insurance is essential because cyberattacks are becoming increasingly sophisticated, targeting businesses of all sizes. Small businesses are often vulnerable to attacks that can result in data breaches, system damage, business interruptions, and financial losses.

Cyber insurance helps protect against these risks by covering expenses such as data recovery, ransomware extortion payments, business interruption losses, and legal costs related to privacy breaches.

What does the CyberGO policy cover?

The CyberGO policy includes coverage for system damage, business interruption, cyber extortion, privacy breach notification & loss mitigation, rewards expense, and privacy breach, among other coverages such as computer virus transmission & hacking, and multimedia liability.

What does the CyberSecure policy cover?

CyberSecure includes everything in the CyberGO policy, plus additional cover for protecting your brand and personal reputation. It also provides protection against fraud involving deceptive techniques like phishing emails (social engineering) and other types of cybercrime.

What is the difference between CyberGO and CyberSecure?

CyberSecure offers higher coverage limits and enhanced protection. It covers areas such as brand and personal reputation, fraud arising from social engineering (where individuals are manipulated into sharing confidential information), and cybercrime, which are not included in CyberGO.

How does this insurance cover help me if something goes wrong?

If something happens to your computer systems, like a hacker breaks in or a virus messes things up, this insurance helps pay for the costs to fix it. For example, if your business can’t run because of the problem, the insurance can help cover the money you’re losing.

It also helps if someone tries to steal money from you or if a hacker demands money to give your data back. This way, you have support to get your business back on track without having to pay for everything yourself.

What isn't covered?

Not everything is covered by the insurance. For example, it won’t pay for problems that happened before you got the insurance. It also won’t cover you if you break the law or if your systems fail because of things like electrical or mechanical problems.

If you make agreements or promises that you can’t keep, the insurance won’t cover you for that either. There are some things like damages from war or natural disasters that aren’t covered too.

What is Brand Protection Cover?

Brand protection cover pays for public relations costs incurred to mitigate or avert damage to a company’s reputation or commercial brand. It is not available under the CyberGO policy but is included in the CyberSecure policy.

What is Personal Reputation Cover?

Personal reputation cover applies to senior staff (such as directors, officers, etc.) and covers public relations costs to mitigate damage to their personal reputation following a cyber event. It is only available under the CyberSecure policy.

What is Social Engineering cover?

Social Engineering refers to techniques used by cybercriminals to manipulate individuals into revealing confidential information or performing actions like transferring money to fraudulent accounts.

In the context of the CyberSecure policy, social engineering coverage includes protection against losses from phishing, fake emails, and other forms of cyber fraud.

For example, if an employee is tricked into revealing login credentials that allow an attacker to generate a fake invoice, the policy may cover this loss.

What is Cyber Crime cover?

Cyber Crime under the CyberSecure policy covers losses due to the fraudulent manipulation or theft of funds, electronic data, or property caused by cybercriminals.

This can include situations where attackers modify bank details in invoices, leading to financial loss. This cover may also provide protection in relation to the fraudulent transfer of funds or property resulting from data manipulation in your or a service provider’s computer systems.

Are privacy breach fines and investigations covered?

Yes, both CyberGO and CyberSecure policies cover privacy breach fines and investigation costs, subject to legal limitations.

What is the difference between First & Third Party cover?

First-party cover protects your business against direct losses resulting from a cyber event, such as system damage costs, business interruption (loss of revenue), or cyber extortion (i.e., ransom payments). It covers expenses incurred by you to recover from the event.

Third-party cover protects you if a third party, such as a customer or partner, files a claim against your business due to a cyber event that affected them (e.g., privacy breach, transmission of a virus). This could include legal costs, settlements, or judgments.

What is the policy excess for CyberGO and CyberSecure?

For most coverages, the policy excess is $1,000 for both CyberGO and CyberSecure.

Can I change the standard excess from $1,000?

No. The excess cannot be changed.

Can I take higher or lower limits of cover?

As this is a pre-priced scheme product, the limits of cover cannot be changed. However, higher limits of cover can be arranged under a bespoke Cyber Insurance policy. Please contact us if you would like us to arrange a tailored policy based on your individual circumstances.

Who is CYLO Insurance, and how are they different?

CYLO is a specialist underwriting agency focusing on cyber insurance solutions for small and micro-businesses. Backed by CGU Insurance, they offer a comprehensive cyber insurance product that integrates cybersecurity tools like real-time risk assessments through UpGuard.

This combination of insurance and security tools sets CYLO apart from traditional insurers, providing businesses with both protection from and response to cyberattacks.

What information will I receive in my FREE UpGuard Report that will be provided with my quote?

The UpGuard Report is a cybersecurity risk assessment that comes with CYLO’s insurance offering. It gives an ‘outside-in’ risk score and a vulnerability report by scanning your business’s online presence and identifying areas where cybercriminals might find weaknesses.

This real-time risk assessment helps your business address these vulnerabilities before they turn into serious issues, lowering the chances of a cyberattack and the potential financial fallout.

What is an UpGuard Score?

The UpGuard Score reflects the strength of your business’s online security, included in the UpGuard Report. The score starts at 950 (perfect) and decreases if security issues or risks are detected. A higher score means better cybersecurity. This score shows how well your business is protected from online threats like hackers or viruses and highlights areas for improvement to keep your business safe.

UpGuard checks things like the security of your internet connections, the status of your security certificates, and if there are vulnerabilities (open ports) that hackers could exploit. The more critical the issue, the more points you lose.

How does UpGuard collect information about my business?

UpGuard collects information using non-intrusive, passive methods. This means it checks your online security without interfering with your business operations.

Their system scans billions of data points from trusted sources daily, looking for any potential security risks. The process is automated and constantly updated to keep pace with new threats and ensure your business remains secure.

How do I know my UpGuard Score?

Your UpGuard score will be included in the free UpGuard Report, provided alongside your Cyber Insurance Quote.

I need help understanding my UpGuard report.

If you have questions after receiving your report with your quote, we’ve created a guide covering the 10 most common findings, what they mean, and how to fix them. You can access the guide here.

How can I fix a poor UpGuard score?

To improve a low UpGuard score, start by addressing the specific security weaknesses highlighted in the report. This may include updating security certificates, closing any vulnerable or unused ports, and implementing strong password policies.

Regularly backing up critical data and keeping all systems and software updated with the latest security patches are also key. UpGuard’s ongoing monitoring will help you track your progress and continue improving your security.

What is Malware Protection?

Malware protection includes tools and strategies designed to safeguard your business systems from harmful software like viruses, ransomware, and trojans. These tools work to detect, block, and remove malware, protecting your data, preventing system damage, and ensuring that your business operations remain uninterrupted.

What does it mean to 'backup business critical data' in a different location?

Backing up business-critical data in a different location means saving copies of your essential data in a secure place outside your main systems, either physically or in the cloud. This ensures that, if a cyberattack or system failure occurs, you can quickly restore the data and keep your business running with minimal disruption.

I have had an incident previously; what can I do?

If you’ve had a cyber incident in the past, there are steps you can take to protect your business moving forward. Using services like UpGuard can help you identify any lingering vulnerabilities and strengthen your defences to avoid future attacks. Cyber insurance can also help cover the costs of any future incidents, so you’ll be better prepared if something happens again.

It’s important to disclose any past incidents on your insurance application, even if you didn’t have insurance at the time.

Insurance advice you can trust