We help organisations develop clear and effective cyber and data security strategies, before, during and after any breach event - helping them to maintain regulatory compliance and reduce the risk of an infringement.
Our team is equipped to provide a comprehensive range of cyber security and data breach response services, including acting as a point of contact, end-to-end cyber and data breach support and follow-up claims and litigation support.
We showcase our breach response through three key pillars:
“Measuring how closely firms match up to what counts as best practice shows that in most organisations there is still some way to go when it comes to cyber preparedness.“
Hiscox Cyber Readiness Report, 2019
Establishing appropriate technical and organisational measures in order to detect personal data breaches is not only paramount, it’s now a mandatory requirement.
By making sure expert support is sought with the planning and risk management of cyber and data incidents, organisations reduce their level of risk and therefore, enhance regulatory compliance and resilience to the full spectrum of threat triggers, ranging from malicious hackers to human error.
Developing cyber and data breach response plans/manuals tailored to support the organisation in the event of a crisis helps manage an incident effectively and will help mitigate losses from a breach.
We work with information security teams to verify that technical measures such as intrusion detection systems, security information and event management are operating correctly and optimised in order to detect personal data breaches, to ensure operational procedures are kept updated and that adequate levels of staff awareness and breach reporting procedures are clearly defined and are being followed.
With a track record of supporting clients, our risk management and preparedness services support in the following areas:
When an incident occurs and the clock is ticking, it is essential that organisations take the right action, quickly and decisively.
The initial hours in the immediate aftermath of a cyber-attack or a data breach can be critical to the effectiveness of responses and recovery. Having a team of experts available 24/7 to help manage and provide practical advice as well as support is the reassurance we deliver.
The Breach Response strategy will include:
If you are an insurer, our Cyber & Data Breach Response team will work in conjunction with specialist coverage lawyers. Working in tandem we are able to provide immediate advice on cover enabling Underwriters the opportunity to make urgent decisions to benefit their policyholders e.g. confirming remediation strategies.
Now the breach is contained?
To learn from the breach we work with you post-incident to conduct reviews, analyse the cause of an incident, consider what worked well during any breach response and what gaps were revealed, what defences can be improved and what lessons can be learned.
The team are supported by forensic accountants and adjusters from within DWF’s Connected Services division, who can calculate and/or consider the loss incurred for compensation under the policy
The DWF litigation team is highly experienced in disputes and risk issues derived from cyber incidents, data and privacy loss. Increasing criminal cyber activity, mandatory reporting to data regulators, popularisation of group litigation, increased consumer rights awareness and the proliferation of claims management businesses has meant businesses must be equipped to manage increasing litigation risks following an incident.
Our experience speaks for itself:
We have advised upon issues such as: acting for banks in multi-million pound cyber derived litigation, managing notification risks with data regulators, advising on liabilities flowing from significant payment card data breaches; class-actions derived from data loss; and advising on mass claim risks following data incidents. We can also assist clients with a parallel active criminal investigation, often triggered via Action Fraud. We are well versed in liaising with law enforcement, including local police forces and the National Cyber Crime Unit, The National Cyber Security Centre and Europol.
If you're an insurer, you will be interested to know about Claimsview:
We work closely with insurers and policyholders to identify as early as possible, the extent of cover available. If a notification is accepted, DWF Claims is then able to manage resolution of claims.
We manage claims via our market leading claims system Claimsview enabling you or your clients the opportunity to reduce claim life cycles and the management time associated with a cyber or data breach. Our claims system can produce bespoke management information to allow you or your clients the opportunity to adopt more robust security and a proactive approach to addressing cyber risks.
Like us, our clients recognise that the world is changing fast and the old rules no longer apply. That’s why we’re always finding agile ways to tackle new challenges together. But we don’t simply claim to be different. We prove it through every detail of our work, across every level. We’re leading the way by adding value that goes beyond the traditional legal adviser role.
Our Connected Services form an umbrella over a range of complementary specialist organisation solutions, as well as consultative services and products, that sit alongside DWF’s core legal offering. Each organisation within the division has been set up to offer a complete service designed to help clients better manage risk, reputation, cost, time and resources.
Take a deeper look into the three pillars to find out more about what we can offer, alternatively, if you are a corporate organisation or insurer, download our cyber & data breach brochure.