Cyber & Data Breach Response

Cyber security is a real and growing issue. Organisations big and small are increasingly realising that it is something they cannot ignore.

We help organisations develop clear and effective cyber and data security strategies, before, during and after any breach event - helping them to maintain regulatory compliance and reduce the risk of an infringement.

Our team is equipped to provide a comprehensive range of cyber security and data breach response services, including acting as a point of contact, end-to-end cyber and data breach support and follow-up claims and litigation support.

We showcase our breach response through three key pillars:

Risk Management and Preparedness
Breach Response
Claims & Litigation

“Measuring how closely firms match up to what counts as best practice shows that in most organisations there is still some way to go when it comes to cyber preparedness.“
Hiscox Cyber Readiness Report, 2019

1. Risk Management & Preparedness

Risk Management & Preparedness

Establishing appropriate technical and organisational measures in order to detect personal data breaches is not only paramount, it’s now a mandatory requirement.

By making sure expert support is sought with the planning and risk management of cyber and data incidents, organisations reduce their level of risk and therefore, enhance regulatory compliance and resilience to the full spectrum of threat triggers, ranging from malicious hackers to human error.

Developing cyber and data breach response plans/manuals tailored to support the organisation in the event of a crisis helps manage an incident effectively and will help mitigate losses from a breach.

We work with information security teams to verify that technical measures such as intrusion detection systems, security information and event management are operating correctly and optimised in order to detect personal data breaches, to ensure operational procedures are kept updated and that adequate levels of staff awareness and breach reporting procedures are clearly defined and are being followed.

With a track record of supporting clients, our risk management and preparedness services support in the following areas:

Staff training, awareness and monitoring
Data protection
Incident/crisis response management planning
Risk assessments
Audit and testing
Management information and reporting
Horizon scanning

If you are an insurer or corporate organisation, download our brochure to find out more about how our Risk Management & Preparedness services can support your business.

2. Breach Response

Breach Response

When an incident occurs and the clock is ticking, it is essential that organisations take the right action, quickly and decisively.

The initial hours in the immediate aftermath of a cyber-attack or a data breach can be critical to the effectiveness of responses and recovery. Having a team of experts available 24/7 to help manage and provide practical advice as well as support is the reassurance we deliver.

We can provide a 24/7, globally accessible call centre coupled with our DWF Notify mobile app that facilitates around the clock incident notification. Our helpline is able to handle calls in any language, arranging translation where required
Our initial triage of an incident will help inform and determine what, if any further investigations are required, for example whether expert IT forensics or reputational PR support are needed
Our Cyber & Data Breach Response team includes an international claims handling capability and data breach lawyers who are experienced at attending on-site with clients, assisting with the implementation and project management of the overall breach response plan, liaising with regulators and law enforcement and providing legal advice in a live, rapidly evolving post breach environment

The Breach Response strategy will include:

Controls and procedures to stabilise systems and prevent further damage
Recovery of data, presentation of evidence whilst maintaining legal privilege
Dealing with the media, data subjects and the wider public
Collaborating with in-house IT teams or engage one of our preferred third-party IT forensics teams to manage the incident and commonly engage a third party media relations team to support PR

If you are an insurer, our Cyber & Data Breach Response team will work in conjunction with specialist coverage lawyers. Working in tandem we are able to provide immediate advice on cover enabling Underwriters the opportunity to make urgent decisions to benefit their policyholders e.g. confirming remediation strategies.

Now the breach is contained?

To learn from the breach we work with you post-incident to conduct reviews, analyse the cause of an incident, consider what worked well during any breach response and what gaps were revealed, what defences can be improved and what lessons can be learned.

If you're and insurer or corporate organisation, download our brochure to find out more about how our Breach Response services can support your business.

3. Claims & Litigation

Claims & Litigation

The team are supported by forensic accountants and adjusters from within DWF’s Connected Services division, who can calculate and/or consider the loss incurred for compensation under the policy

Litigation

The DWF litigation team is highly experienced in disputes and risk issues derived from cyber incidents, data and privacy loss. Increasing criminal cyber activity, mandatory reporting to data regulators, popularisation of group litigation, increased consumer rights awareness and the proliferation of claims management businesses has meant businesses must be equipped to manage increasing litigation risks following an incident.

Our experience speaks for itself:

We have advised upon issues such as: acting for banks in multi-million pound cyber derived litigation, managing notification risks with data regulators, advising on liabilities flowing from significant payment card data breaches; class-actions derived from data loss; and advising on mass claim risks following data incidents. We can also assist clients with a parallel active criminal investigation, often triggered via Action Fraud. We are well versed in liaising with law enforcement, including local police forces and the National Cyber Crime Unit, The National Cyber Security Centre and Europol.

Claimsview

If you're an insurer, you will be interested to know about Claimsview:

We work closely with insurers and policyholders to identify as early as possible, the extent of cover available. If a notification is accepted, DWF Claims is then able to manage resolution of claims.

We manage claims via our market leading claims system Claimsview enabling you or your clients the opportunity to reduce claim life cycles and the management time associated with a cyber or data breach. Our claims system can produce bespoke management information to allow you or your clients the opportunity to adopt more robust security and a proactive approach to addressing cyber risks.

If you're and insurer or corporate organisation, download our brochure to find out more about how our Litigation & Claims services can support your business.

Why DWF

Like us, our clients recognise that the world is changing fast and the old rules no longer apply. That’s why we’re always finding agile ways to tackle new challenges together. But we don’t simply claim to be different. We prove it through every detail of our work, across every level. We’re leading the way by adding value that goes beyond the traditional legal adviser role.

Our Connected Services form an umbrella over a range of complementary specialist organisation solutions, as well as consultative services and products, that sit alongside DWF’s core legal offering. Each organisation within the division has been set up to offer a complete service designed to help clients better manage risk, reputation, cost, time and resources.

Take a deeper look into the three pillars to find out more about what we can offer, alternatively, if you are a corporate organisation or insurer, download our cyber & data breach brochure.