20 Questions When Your Vendor’s Cyber-Coverage Matters
Contracts with tech vendors increasingly include requirements of cyber-risk insurance coverage, but where the value and risks associated with the data to be shared with or created by the vendor warrant such a requirement, you should probably take a look at the coverage – and not just a certificate of coverage – to see what you’re getting, writes Jon Neiditz in Kilpatrick Townsend’s Big Data Tech Law blog.
First of all, he advises, always make sure you know what if any critical digital assets other than personally-identifiable information (PII) are covered.
He categorizes the questions as general, amount and scope of coverage, insurance claims process and dispute resolution, and provisions regarding the defense of an underlying claim or lawsuit.