Hays Companies is proudly kicking off its three-part Minneapolis based Property and Casualty Seminar Series on Tuesday, June 3rd featuring strategies and tactics for risk management and finance professionals. The three seminars are: Cyber Liability, Worker’s Compensation Analytics and Claim Mitigation. These aren’t your ordinary insurance seminars. We will be bringing in captivating speakers talking about current events in the risk management marketplace and you will walk away with new perspectives and fresh applicable ideas for your organization.
During Hays Companies June 3rd Cyber Liability Seminar, Mr. Jim Stickley will present “Confessions of an Identity Thief.” Mr. Stickley has gained access to billions of dollars over the past 20 years. He has robbed over 1,000 financial institutions, broken into government facilities, and hacked his way into hundreds of networks.
Fortunately for all of these victims, Stickley is not a criminal. He is a cyber-security expert who is hired to perform cyber attacks and find the holes in security before real criminals do.
In this seminar, Stickley will expose crucial information about how cyber criminals gain access to your confidential information using social engineering. He will walk you through the mind of these criminals and explain how you can better protect your customers, employees, and company from these threats.
He has been a consultant for network stations FOXNEWS, CBS, NBC and the Associated Press. He has been featured in numerous publications, including Time Magazine, Business Week, Fortune Magazine, and the New York Times. And he has been showcased on numerous television shows including: NBC’s “Nightly News,” CNN’s “News Night,” CNBC’s “The Big Idea,” Anderson Cooper’s “Anderson” and is a frequent guest of NBC’s “Today Show.”
No matter if you are a technical genius, computer neophyte, or anywhere in between, do your company and customers a favor and attend this seminar. Learn how to avoid cyber identity theft and help keep your business flourishing for the future.
To register or receive more information contact: firstname.lastname@example.org
Hays hosted their ninth annual Risk Management Symposium on March 20th, 2014 at their Chicago, IL office. More than 150 CFOs and Risk Managers from the area came together to network with peers and learn about current and emerging trends relevant to their business. Industry leaders discussed innovative approaches to cyber liability, predictive modeling of claims, and catastrophe risk modeling.
The Symposium also included an expert panel discussion on new products and ideas in the insurance marketplace, led by Gavin Souter, Editor of Business Insurance.
Afterwards, Hays Cyber Liability Practice Lead and Symposium presenter, Dave Wasson, was quoted on the evolution of cyber crime and new cyber threats in the Business Insurance publication. You can view the article here.
Margaret Mead once said, “Never doubt that a small group of thoughtful, committed citizens can change the world; indeed, it’s the only thing that ever has.” Hays Companies is putting this thought into action through our hard work and support of Habitat for Humanity, a nonprofit organization dedicated to providing affordable shelter, eliminating substandard housing and homelessness worldwide. For the past five years, the Hays Volunteer Team has built safe shelters for families in need and worked in partnership with other businesses on the Entrepreneurs House. Mik Gusenius, Chair of the Entrepreneurs House Committee shared, “Since Hays has become a part of the program, the House has had its best fundraising years, raising more than $500,000 and contributing more than 2,000 volunteer build days. Hays has been an integral part of the continued growth.”
During the all-day build, Hays volunteers guided by experts, landscaped, framed pre-assembled walls, shingled roofs and installed flooring. At the end, when the houses were completed, volunteers had the opportunity to greet the future homeowners.
Hays Director of Claims Management, Robert Rangel said, “It was an inspiring day and a great way to bond with coworkers and learn new skills.”
At Hays we know that a strong, vibrant community doesn’t just happen. CEO, Jim Hays stated it simply: “We believe at Hays that it’s absolutely necessary to give back to the communities in which we live. We encourage employees to find projects and organizations that they care about and we support participation at all levels. Our community initiatives give our employees great purpose which helps build a positive culture.”
On January 28th, Habitat for Humanity held the dedication ceremony for the 2013 Entrepreneurs House. We are honored to be a part of this organization.
Some of the Hays Habitat for Humanity volunteers
Hays Volunteer Team assembling walls of the house.
Hays Graphics Specialist, Dennis Shogren and Senior Claims Analyst, Allison Robshaw work together to secure flooring.
Exceptional risk management practices and their risk managers always ensure contractual insurance requirements in contractor and vendor agreements are reviewed on a consistent basis. It is their responsibility to be certain that insurance and risk-related provisions of standard agreements and purchase orders are following best practices, and appropriate for what is available and attainable in the insurance industry. In an effort to ensure the best protection possible and close potential loopholes, contractual insurance requirements sometimes inadvertently end up too restrictive, unattainable and often unenforceable.
Purchasing or contract execution can be difficult due to contractors’ inability to comply. A few common examples found in insurance requirements include:
Requiring an A.M. Best rating that is too high. An “A+” or “A” insurer financial rating and the largest size category may seem like a good idea with a goal of ensuring viable insurance assets. In reality, it can potentially reduce the pool of contractors able to comply, may risk placing them into non-compliance, or could exclude capable and acceptable contractors & vendors. A rating of “A-“ is still defined as “Excellent” by A.M. Best and is within the acceptable financial security standards of most brokers. Risk managers may want to consider any of the “A” ratings as an acceptable grade for counterparties.
Stipulating that the Contractual Liability provisions of contractor/vendor liability insurance policies are to provide coverage for allliability assumed in the Indemnification provision of the Agreement. By design, most indemnity provisions of a contract or agreement are intended to address insurable risks and uninsurable risks, such as breach of warranty and commercial risks. Contractual Liability provisions of liability policies are intended to only address tort liability assumed in an “insured contract” as defined by the policy. Overly broad attempts at linking insurance to indemnity provisions creates the possibility of unintentionally ruling the provision vague, unenforceable and therefore void.
Requiring contractors’ insurers provide Notice of Cancellation too far in advance or require insurer to provide notice of “material changes of coverage.” Longer notices of policy cancellation is fairly common between insurer & insured; 30-days is an acceptable and reasonable notice to certificate holders and additional insured’s on contractor policies. However, it is often challenging to get an insurer to agree to provide a cancellation notice. While it appears to be a good idea, no insurer will agree to provide notice for “material change” in the policy. It is simply too burdensome and there is no common or agreed understanding of what constitutes “material change.”
Crafting insurance requirements is often more of an art and less a science. The obvious intent is to insulate the utility from unreasonable liability arising out of the operations of contractors, vendors and service providers. The risk manager must also juggle absolute protection with what is available and attainable in the marketplace, all while accommodating the business and commercial needs of their internal constituents.
The recent theft of 40 million credit and debit records may have not been the largest data breach, but it sure did get our attention.
In 2002, California introduced the first “breach notification law,” SB1386, and the majority of states quickly followed suit. Today, 46 states, the District of Columbia, the US Federal Government, Canada, and the European Union all have breach notification laws – often multiple laws applying to different types of data. The data breach tracking website datalossdb.org notes approximately 8,000 breaches since 2004, affecting over 700,000,000 records.
Many misconceptions persist about the exposures of “cyber” liability, the way in which these claims occur, and the extent to which they are insurable.
While many entities feel they are not exposed to “cyber” events, either because they do not handle Protected Health Information (PHI), because they do not sell goods or services online, because they outsource the storage of their data, or because they are small, there is almost no company that is not exposed to data breaches.
In reality, the simple presence of customer data, employee data, or confidential third party corporate data creates this exposure. Though we often think of these events in “cyber” terms, some of the most severe incidents have come from the loss of paper files.
Many companies feel their small size insulates them from data breaches, though the reality is that smaller entities often have less staff able to be dedicated to a data breach response and a smaller balance sheet to settle liabilities. Some small companies with limited assets have been forced into bankruptcy due to their post-breach liabilities.
The insurance products available in the market today are actually a group of products such as privacy liability (called “third party” coverage,) breach costs (“first party” coverage,) regulatory investigations, fines, and penalties, multimedia liability, cyber business interruption, damage to digital assets, and cyber extortion. Many carriers have innovative enhancements to these coverages, or specialized coverages not available elsewhere.
The most commonly used portion of a cyber liability policy is the breach costs insuring agreement, which covers services such as computer forensics, notification to affected individuals, credit and/or identity monitoring, and public relations. While limits, retentions, and policy language are all very important, many buyers find the availability of these resources, centralized through a single, experienced business partner to offer significant convenience and peace of mind.
Though the majority of data breaches are perpetrated by sophisticated hackers, Verizon’s 2013 Data Breach Investigations Report shows that approximately half of known data breaches were attributable to human error. Often, human error facilitates the hack. Approximately one sixth of the studied data breaches arose from third party business relationships. In almost all cases, data storage facilities disclaim all liability for data breaches, leaving the data owner responsible for the costs.
The cyber liability marketplace has changed significantly in the recent past, with coverage now available to companies of all sizes, lower premiums, and lower retentions/deductibles.
Want to be certain you are covered? Hays Companies’ Cyber Liability Practice assists clients ranging from pre-revenue start-ups to established multi-billion dollar entities. Cyber Liability Practice Leader Dave Wasson is available for complimentary consultations at 312.519.7141 or DWasson@HaysCompanies.com.