decorativePolicy overview

VMIA’s Cyber Insurance covers your organisation for breach response expenses incurred by your organisation including, forensics, legal & notification, call centre, identity theft, crisis management and public relations. Legal liabilities arising from a breach of computer security or breach of privacy (personal or corporate information) including the legal costs incurred in defending these claims are also covered.

Many organisations handle personal and corporate data on a daily basis, whether it’s employee profiles, identity card numbers, credit card information, sensitive demographic information or budget and funding information.

In an ever-increasing punitive legal and regulatory environment, Cyber Insurance provides a risk transfer solution for data breach exposures. 

Who’s covered?

Your department, agency or hospital and its directors, officers and employees are all covered.

What’s covered?

VMIA’s Cyber Insurance provides for first-party expenses (incurred by your organisation in the event of a cyber incident) and third-party expenses (amounts your organisation is legally liable to pay, as a result of a cyber incident).

Protection for your organisation, includes:

  • forensic team expenses
  • call centre expenses
  • public relations and crisis management expenses
  • cyber extortion loss, including negotiation, security consultants and extortion payment to end the threat
  • restoring, recreating or recollecting corrupted, damaged or deleted data
  • operational costs and additional costs incurred due to a computer security failure
  • notification costs involved with notifying affected persons of a data breach and/or the Privacy Commissioner
  • data administration investigation costs, fines and penalties.

Protection for claims made by third-parties includes:

  • theft, loss or unauthorised disclosure of personally identifiable or third party corporate information
  • computer security failure resulting in corruption, alteration or destruction of data, or failure to prevent the transmission of virus or malicious code
  • failure to comply with a privacy policy
  • cover for PCI fines and costs.

This is a brief overview of policy features only. For full details, please refer to the policy wording below.


VMIA has partnered with Beazley Group to manage the breach response process.

As soon as you suspect a breach has occurred, notify Beazley by email at (recommended), or by phone 1800 254 492.

Please include the following in your notification;

  • short description of the incident
  • the date the incident occurred (if known)
  • the date your organisation discovered the incident
  • contact information for the designated breach coordinator.  

Please do not include any personally identifiable information or protected health information in your notification.

Beazley or VMIA’s claims team will be in contact within 24-hours of receipt of your notification to advise on next steps.

Policy documents

More information

To contact our Insurance Team, or for more information about this policy or any insurance matter, email

Page last updated: 17 April 2018