Even if you do not hold personal security information, your business is still vulnerable to a data breach. Even if you use a third party to store patient information, you are still the “data owner” and are legally required to notify patients of a breach. While you may take credit cards but not store them, your practice may still be the victim of increasingly sophisticated hackers who are able to skim off credit card information. And, if you have employees, you are more than likely holding their personal information. Personal information does not have to be in electronic form to be exposed; paper information is a significant risk in storage or disposal.
Cyber liability insurance protects the Florida healthcare provider by covering:
- Expenses related to notifying patients following a data breach;
- Lawsuits stemming from a data breach; and
- Breaches of employee data and paper files.
So all Florida businesses that deal with any type of personal data, or has a presence on the internet or social media, need to seriously consider purchasing cyber liability insurance.