skip to main content
Travelers Logo
  • About
  • Careers
  • Agents
  • Investors
  • Sustainability
  • Contact Us
  • For Individuals
    • Overview
    • Products
      • Car
      • Home
      • Renters
      • Condo
      • Landlord
      • Boat & Yacht
      • Flood
      • Motorcycle
      • Travel
      • Pet
      • Weddings
      • Umbrella
      • All Products
    • Prepare & Prevent
      • Insurance 101
      • Home Central
      • Travelers Garage
      • Managing Through COVID-19
    • Affinity Group Discount
    • Online Service
    • Pay Your Bill
      • Get a Quote
      • Find an Agent
      • File a Claim
      • Pay Your Bill
  • For Business
    • Overview
    • Products & Solutions
      • Overview
      • Boiler & Machinery
      • Commercial Auto & Trucking
      • Cyber
      • Environmental Liability
      • Excess Casualty & Umbrella
      • General Liability
      • Global Insurance
      • Inland Marine
      • Management & Professional Liability
      • Ocean Marine
      • Property
      • Business Owner's Policy
      • Surety Bonds
      • Workers Compensation
        • Find an Agent
        • File a Claim
        • Pay Your Bill
    • Industries
      • Overview
      • Agribusiness
      • Architects, Engineers & Surveyors
      • Auto & Truck Dealers
      • Business & Professional Services
      • Construction
      • Education
      • Energy & Renewable
      • Equipment Dealers
      • Financial Institutions
      • Food Services
      • Health & Related Services
      • Hospitality & Recreation
      • Manufacturing
      • Marine Industries
      • Museums & Fine Art
      • Non-Profit
      • Oil & Gas
      • Public Entities
      • Real Estate
      • Retail
      • Technology
      • Transportation
      • Wholesale & Distribution
        • Find an Agent
        • File a Claim
        • Pay Your Bill
    • Services
      • Overview
      • Risk Control
      • Claim
      • Premium Audit
      • Online Customer Tools
      • Risk Management Information Services
      • Travelers Client Advantage
        • Find an Agent
        • File a Claim
        • Pay Your Bill
    • Small Business
      • Overview
      • Automobile Insurance
      • Business Owner's Policy
      • Data Breach
      • Employment Practices Liability
      • Professional Insurance
      • Umbrella Insurance
      • Workers Compensation Inurance
        • Find an Agent
        • File a Claim
        • Pay Your Bill
    • Large Business
      • Overview
      • Casualty
      • Cyber
      • Management & Professional Liability
      • Property
        • Find an Agent
        • File a Claim
        • Pay Your Bill
    • Multinational Business
    • Prepare & Prevent
      • By Topic
      • By Industry
      • Navigating Your Business Through COVID-19
        • Find an Agent
        • File a Claim
        • Pay Your Bill
      • Find an Agent
      • File a Claim
      • Pay Your Bill
  • Claim Center
    • Claim Center
    • Should I File a Claim?
    • File a Claim
    • Roadside Assistance
    • Find a Service Provider
    • Check Your Claim Status
    • Manage Your Claim Experience
      • Understanding the Claim Process
      • Claim Guide Library
      • Workers Compensation Resources
    • Claim Capabilities
      • Get a Quote
      • Find an Agent
      • File a Claim
      • Pay Your Bill
  • Prepare & Prevent
    • For Individuals
    • Home Central
      • Buying & Selling
      • Home Maintenance
      • Home Renovation
      • Home Safety
      • Moving
      • Smart Home
    • Travelers Garage
      • Buying & Selling
      • Car Maintenance
      • Distracted Driving
      • Safe Driving
      • Teen Driving
      • Boating
    • Insurance 101
    • Weather
    • For Business
    • Industries
      • Construction
      • Manufacturing
      • Nonprofit
      • Small Business
      • Technology
    • Topics
      • Business Continuity
      • Cyber
      • Driver and Fleet Safety
      • Facilities Management
      • Internet of Things
      • Product and Services Liability
      • Supply Chain Management
      • Workplace Safety
    • Travelers Risk Index
      • Get a Quote
      • Find an Agent
      • File a Claim
      • Pay Your Bill
  • About Travelers
    • Overview
      • Awards & Recognition
      • Careers
      • Community
      • Diversity & Inclusion
      • Sustainability
      • History
      • Investors
      • Media Resources
      • News
      • Travelers Championship
      • Travelers Institute
      • Get a Quote
      • Find an Agent
      • File a Claim
      • Pay Your Bill
    • Get a Quote
    • Find an Agent
    • File a Claim
    • Pay Your Bill
Main Navigation
  • For Individuals
      • Insurance for Individuals
      • Products
        • Car
        • Home
        • Renters
        • Condo
        • Landlord
        • Boat & Yacht
        • Flood
        • Motorcycle
        • Travel
        • Pet
        • Weddings & Events
        • Umbrella
        • More
      • Prepare & Prevent
        • Insurance 101
        • Home Central
        • Travelers Garage
      • Affinity Group Discount
      • Online Service
      • Pay Your Bill
    • Get a home quote now

      It's easy to get a free quote for home insurance from Travelers in just a few minutes.

       

      Get a home quote now
  • For Business
      • Products & Solutions
        • Commercial Auto & Trucking
        • Cyber
        • General Liability
        • Management & Professional Liability
        • Property
        • Business Owner's Policy
        • Surety Bonds
        • Workers Compensation
        • More
      • Industries
        • Construction
        • Energy & Renewable
        • Financial Institutions
        • Healthcare
        • Manufacturing
        • Real Estate
        • Technology
        • Transportation
        • More
      • Prepare & Prevent
      • Services
        • Risk Control
        • Claim
        • Premium Audit
        • More
      • Pay Your Bill
      • Small Business
      • Large Business
      • Multinational Business
      • For Business Overview
    • Tips for Managing Risks Related to a Remote Workforce

      Tips for Managing Risks Related to a Remote Workforce

      With the current reality of more employees working from home through the pandemic, is your business ready for all the implications?

      Learn more
  • Claim Center
      • Claim Center
      • Should I File a Claim?
      • File a Claim
      • Roadside Assistance
      • Find a Service Provider
      • Check Your Claim Status
      • Manage Your Claim Experience
        • Understanding the Claim Process
        • Claim Guide Library
        • Workers Compensation Resources
      • Claim Capabilities
    • Send us your receipts, photos, invoices and more with just a push of a button.

      Securely share information with your Claim team.

      Send us your receipts, photos, invoices and more with just a push of a button.

      Upload a File
  • Prepare & Prevent
      • For Individuals
      • Home Central
        • Buying & Selling
        • Home Maintenance
        • Home Renovation
        • Home Safety
        • Moving
        • Smart Home
      • Travelers Garage
        • Buying & Selling
        • Car Maintenance
        • Distracted Driving
        • Safe Driving
        • Teen Driving
        • Boating
      • Insurance 101
      • Weather
      • For Business
      • Industries
        • Construction
        • Energy
        • Manufacturing
        • Nonprofit
        • Small Business
        • Technology
      • Topics
        • Business Continuity
        • Cyber
        • Driver and Fleet Safety
        • Facilities Management
        • Internet of Things
        • Product and Services Liability
        • Supply Chain Management
        • Workplace Safety
      • Travelers Risk Index
    • Managing Through COVID-19

      Managing Through COVID-19

      Resources to help you adapt to the realities of COVID-19.

      Learn more
  • Home
  • Prepare & Prevent
  • Business
  • Cyber
  • Do You Need a Data Breach Coach?

Do You Need a Data Breach Coach?

data breach coach meeting with business employer data breach coach meeting with business employer

Most organizations need a data breach coach when they experience a cyber security failure. Unless your organization has IT and legal experts with data breach expertise on staff, and you can answer the following questions in the affirmative, you will probably need one too. Does your organization have an attorney with years of experience managing cyber security incidents? Who in your organization knows the right incident response vendor to call, or whether the incident involves ransomware, a stolen laptop or a massive database hosted in the cloud? Who is familiar with the laws—foreign and domestic, federal and state—that impose data breach notification requirements? Who is skilled at working with regulators to minimize potential exposures to regulatory fines and penalties?

If not, you should probably call a data breach coach when a cyber incident occurs.

A data breach coach can help guide you when your organization has had a data incident. When you consider the growing number of data breaches that are happening, the value of a data breach coach becomes evident. Data breaches have reached an all-time high, through a startling combination of cybercrime and employee negligence or errors. The number of data breaches in the United States continues to grow and in 2017 alone, more than 178 million records were exposed.1

While the aftermath of a data breach can be a massive headache for business stakeholders and their customers, the financial repercussions can be downright devastating. The average total cost of a data breach in the U.S. has risen to over $7 million dollars, according to the latest Ponemon Institute© study.2

So what can you do to help ensure your business is taking the necessary steps to minimize the risk of a data breach, and to help your organization recover quickly after a cyber incident? That's where a data breach coach comes in. We sat down with a data breach coach to find out how organizations like yours can benefit from their services.

What Does a Data Breach Coach Do?

A data breach coach is an attorney who specializes in data privacy and cyber security, and has relationships with third-party forensics investigators, crisis communications professionals and other services an organization may need in the wake of a cyber event. Because data breach coaches are familiar with these vendors, they can engage them immediately on their clients' behalf and help ensure a speedy response.

Data breach coaches also help their clients understand the necessary steps they must take to report and document any data incidents, and help manage communications with law enforcement, credit monitoring vendors, call center vendors, public relations and other services.

In addition to helping organizations after an incident or breach, data breach coaches can also offer advice on building an incident response plan, developing cyber security awareness programs and facilitating other efforts businesses can take to minimize their risk.

The average total cost of a data breach in the US has risen to over $7 million dollars.
*Ponemon Institute
© 2018 Cost of Data Breach Study: Global Overview

What Does a Data Breach Coach Offer that Existing Internal Resources Do Not?

Data breach coaches can help organizations find incident response vendors with the appropriate experience and expertise to handle a cyber incident. Even experienced in-house IT and legal teams can lack the specific expertise necessary to execute the variety of tactics and protocols required to fully manage a cyber security problem. Many organizations falsely assume that, because they already have IT experts and a legal team in-house, they're covered. However, in many cases, an organization's general counsel may not be familiar with the laws that organizations must comply with as part of an event response. Every state has its own data breach notification laws, and those laws vary substantially in determining when notification is required, who is entitled to receive notification, what must be included in the notice and how quickly notification must be made. On top of that, organizations must consider federal laws, such as HIPAA, and even international laws, such as the GDPR.

In addition, most IT departments do not have the resources to conduct a timely, independent and unbiased investigation into the event. Even seasoned IT professionals with years of experience managing complex hardware and software systems may not have the expertise to extract and analyze log files and other forensic evidence. Data breach coaches can help organizations find incident response vendors with the appropriate experience and expertise to handle a cyber incident, whether the data was stolen from a mobile device, a corporate network or even the cloud.

When Should I Bring in a Data Breach Coach?

If you suspect that your organization's data has been compromised, it’s critical that you to report your concern to your insurer as soon as possible — regardless of the perceived severity. The sooner you report the incident, the sooner your insurer can provide you access to a data breach coach to help coordinate an appropriate response. For example, if an employee accidentally sent sensitive information to the wrong recipient or reported a missing laptop, or if you have reason to believe an unauthorized person has access to your data, it's worth reaching out to your insurer who will contact the data breach coach on your behalf.

Even if you are uncertain whether your organization has lost data, it can make sense to bring in a data breach coach to help manage the incident. In many cases, an organization may not know whether a breach has occurred until an investigation has been conducted. If the organization downplays the incident and fails to conduct a proper investigation, it may draw increased scrutiny from regulators, and even lawsuits, if a breach is later discovered.

When a data privacy event occurs, every moment counts. Breach notification laws can have short deadlines, and it often takes time to determine what data was lost and whether notification is required. Also, it can take mere seconds for a hacker to begin exfiltration of sensitive data — so the sooner you bring a data breach coach into the loop, the sooner they can engage the necessary resources and help prevent further loss of data.

What Information Should I Have on Hand When I Call a Data Breach Coach?

Before you call a data breach coach, try to collect the following information:

  • What happened? Provide as much information as possible about the incident.
  • When did you first notice this issue? Give the approximate date and time your organization discovered the incident.
  • What was compromised? List any devices or data you believe may have been exposed.
  • Who has access to it? List any employees, vendors or other personnel who have access to the devices or data in question.
  • How do you usually secure it? Explain your security protocol for protecting this asset.

Additionally, have your incident response plan handy, assuming you have one. The plan should provide useful information about all of the stakeholders who will need to be involved in the incident response effort, as well as procedures to follow and guidelines for addressing specific issues that may come up.

How Can a Data Breach Coach Help if an Incident Occurs?

While every incident is different, there are typically three phases of an incident response:

1. Investigation

The data breach coach will likely begin by asking you a series of questions (often including those listed above). Based on this information, they'll decide whether the issue necessitates a digital forensics investigation. If so, the forensics team will dig into your systems to identify what happened, how it happened, whether or not it's still ongoing and how to remediate the cause of the incident. Notably, by using a data breach coach, the investigation may be protected by privilege in the event of any future litigation.

2. Disclosure

The data breach coach will determine whether data privacy laws or contractual obligations require the organization to disclose the incident. If so, the data breach coach will assist you in preparing a legally-compliant notification to send to affected individuals, regulators, consumer reporting agencies, clients, business partners and any other third parties whom you're obliged to inform.

3. Defense

Finally, the data breach coach will work to coordinate the organization’s response to any inquiries from the media, regulators, customers or other individuals in such a way as to ensure that your organization has acted diligently and in good faith in investigating, responding to and remediating the breach.

It's critical that you don't wait for your organization to experience a data breach before reaching out for help. By investing in cyber insurance coverage, you can secure access to a data breach coach to help ensure your organization is prepared to deal with potential data security challenges that lie ahead.

Sources:
1 https://www.idtheftcenter.org/images/breach/2017Breaches/2017AnnualDataBreachYearEndReview.pdf
2 Ponemon Institute© 2018 Cost of Data Breach Study: Global Overview

Learn More About Travelers Cyber Insurance Options

More Prepare & Prevent

Boost Your Cyber IQ Quiz

Test Your Knowledge of Cyber Risk Terms

Help protect your organization against cyber security risks by sharpening your cyber knowledge.

Digital forensic detective investigating a data breach in a server room

How Digital Forensics Detectives Investigate a Data Breach

Digital forensic detectives help businesses with data breach investigations to properly collect evidence and help prevent further damage.

Person checking laptop for ransomware

What Is the Current Ransomware Landscape? [Video & Infographic]

Ransomware is the fastest growing malware threat, targeting users of all types. View this infographic to learn more.

Top Stories
Cyber Risks and Your Business Video

Cyber Risks and Your Business [Video]

Pre- and post-breach services can mean the difference in whether or not a business recovers. Travelers can help.

  • Watch the video

Related Content

  • Cyber Terms 101
  • How Pre-Breach Planning Can Help Protect Your Company
  • 5 Types of Cyber Criminals and How to Protect Against Them [Video]

Related Products & Services

Travelers Pre-Breach Services provided by HCL Technologies

Better together when it comes to cyber protection.


CyberRisk for Multiple Industries and Business Sizes

Broad cyber liability coverage customized to fit the needs of small businesses to Fortune 500 companies and every organization in between.


View More Cyber Insurance Options


Find an Agent

Need an Agent?

Get the personal service and attention that an agent provides.

Find a local agent in your area:


See All Cyber Content


Travelers logo

Travelers and The Travelers Umbrella are registered trademarks of The Travelers Indemnity Company in the U.S. and other countries.
© 2023 The Travelers Indemnity Company. All rights reserved.

  • Travelers on Facebook
  • Travelers on YouTube
  • Travelers on Twitter
  • Travelers on LinkedIn
  • Travelers on Instagram

Products & Services

  • For Individuals
  • For Businesses
  • Claim Services
  • Prepare & Prevent

Our Company

  • About Travelers
  • Careers
  • Investors
  • Sustainability
  • Travelers Institute

Connect

  • Customer Support
  • MyTravelers®
  • For Agents
  • Find an Agent

Legal & Compliance

  • Terms of Service
  • Privacy & Security
  • Cookie Settings
  • Accessibility
  • Producer Compensation Disclosure