First Person Coverage for Third Party Liability | Cyber Insurance Academy

LEARNING

CCIS DESIGNATION

The gold-standard in cyber insurance education. Become a Certified Cyber Insurance Specialist (CCIS) – Part of the Specialist Membership

CIE CERTIFICATION

The ultimate foundational cyber insurance course. Get your foot in the door with the CIE certification. Part of the Plus Membership

MICRO-CERTIFICATIONS CATALOG

Browse our newly updated course catalog and take a deeper dive into specific cyber insurance topics

LEARNING BITES

2–5 minute micro-lessons, easily accessible anytime, anywhere

UPCOMING EVENT

Join our thriving online campus with flexible membership plans
MEMBERSHIP
LIBRARY

LIBRARY OVERVIEW

All the premium content you need to broaden your knowledge-base

BLOG

Read about the latest happenings in the cyber insurance world

RESOURCES

Access whitepapers, e-books, toolkits, and templates

EVENTS

Access exclusive events with industry leaders

NEWSROOM

Check out the latest in Cyber and Cyber Insurance

CI LABS

COMING SOON

10 Cyber Insurance Terms You Need To Know in 2024

Join our thriving online campus with flexible membership plans
ENTERPRISE

ENTERPRISE MEMBERSHIP

Exclusive access to advanced cyber insurance training, certifications, and industry insights.

CYBER BUDDY

AI assistant designed to enhance cyber insurance education and client engagement.

BESPOKE TRAINING

Tailored cyber insurance education, customized to your organization’s needs.

PARTNERS NETWORK

Be seen, trusted, and connected in the world’s largest cyber insurance community.

CI LABS

COMING SOON

Join our thriving online campus with flexible membership plans
PRICING
ABOUT

Ask the Community

First Person Coverage for Third Party Liability

Posted by Nicholas Coppola on January, 2026 at 8:39 pm

Here is the scenario. A small business uses SSAS (software as a service) to operate its business. The company offering the SSAS software incurs a breach and their data is locked.

Small company can expect to incur business interruption and they will likely be responsible for reporting a breach of their customer data, along with credit monitoring.

My question is…who is responsible for reporting and credit monitoring? What coverage offers the small business insurance backing in such instances?

Thank you,

– Nick

Nicholas Coppola replied 5 months, 3 weeks ago 1 Member · 1 Reply
1 Reply

Nicholas Coppola

Member
January, 2026 at 8:48 pm

For added context, my question assumes that any business storing sensitive data, including the services they use to do so, is going to be responsible for reporting and monitoring. At least that is how my state’s laws appear to read.

If an outsourced provider incurs a breach and it affects the business using its services, there could be reason to believe expenses will be incurred in the course of the small business acting responsibly. Presumably, these are expenses that could be reclaimed.

I realize there are a lot of factors, but businesses without the funds to build their own systems, if compromised, likely don’t have the funds to pay for all the reporting requirements.

– Nick

Log In to Reply

Log in to reply.