ISO Cyber Insurance Policies Eligibility

< Back

Cyber Liability Insurance

ISO provides five different cyber insurance policies. Each has its own set of eligibility criteria.

CY 00 01-Commercial Cyber Insurance Policy

This policy is not meant for large entities and therefore it has specific criteria that limit who will be able to purchase it.

This policy can be used by:

  • Commercial Enterprises
  • Not-for-profit Organizations
  • Governmental Entities

It cannot be used by any of the above that:

  • Are for profit and have annual revenue in excess of $250,000,000
  • Are not-for-profit and have an annual budget in excess of $125,000,000
  • Want to purchase more than $1,000,000 policy aggregate limit of insurance
  • Want to select more than $10,000 policy deductible amount.

CY 00 10-Information Security Protection Cyber Policy

This policy is meant for medium to large entities and therefore has no revenue, budget or limits of insurance criteria that limit who will be able to purchase it. However, there are limitations as to the types of entities.

This policy can be used by:

  • Commercial Enterprises
  • Not-for-profit Organizations
  • Governmental Entities

It cannot be used by any of the following:

  • Advertisers
  • Broadcasters
  • Digital certifying authorities or organizations that provide hosting services for others.
  • Financial institutions
  • Information technology service providers
  • Internet access providers
  • Internet service providers
  • Managed security service providers
  • Publishers
  • Web content providers

CY 00 11-Financial Institutions Information Security Protection Cyber Policy

This policy is meant for financial institutions. It can be used by:

  • Commercial Enterprises
  • Not-for-profit Organizations
  • Governmental Entities

However, the eligibility is limited to only the following:

  • Banks
  • Credit unions
  • Finance companies
  • Insurance companies
  • Mortgage bankers
  • Savings institutions
  • Securities brokers and dealers

CY 00 12 and CY 00 13-Media and Information Security Protection Cyber Policy

These policies are meant for medium to large entities and therefore have no revenue, budget or limits of insurance criteria that limit who will be able to purchase them. However, there are limitations as to the types of entities.

These policies can be used by:

  • Commercial Enterprises
  • Governmental Entities
  • Not-for-profit Organizations

However, the eligibility is limited to only the following:

  • Advertisers
  • Advertising agencies
  • Authors
  • Book publishers
  • Cable television operators
  • Electronic publishers
  • Magazine publishers
  • Multimedia organizations
  • Newspaper publishers
  • Other organizations that are similar to those listed above
  • Printers
  • Radio stations
  • Television stations