Table 2 The type of information collected and questions asked in the ex-ante assessment
From: Mapping the coverage of security controls in cyber insurance proposal forms
Information collected | Question in the form |
|---|---|
Revenue | Gross Annual Revenue Last Year £ |
Type of Data Collected | Do you store, process and/or transmit any Sensitive Data |
| Â | on Your Computer System (Tick all that apply): |
| Â | Credit card info \(\square \) Customer info \(\square \) Money/Securities info \(\square \) |
| Â | Healthcare info \(\square \) Trade secrets \(\square \) IP Assets \(\square \) |
Volume of data collected | Approximately how many private individuals do you hold sensitive data on: |
Loss History | In the past 5 years has the company ever experienced |
| Â | any of the following events or incidents?: |
| Â | Sustained an unscheduled network outage that lasted over 24 hours Yes \(\square \) No \(\square \) |
| Â | Portable media that was lost or stolen and was not encrypted Yes \(\square \) No \(\square \) |
Out Sourcing/Suppliers | Current Network and Technology Providers (if applicable): |
| Â | Internet Communication Services Please Provide Information on. |
| Â | Credit Card Processor(s) Please Provide Information on. |
| Â | Website Hosting Please Provide Information on. |
| Â | Anti-virus Software Please Provide Information on. |
| Â | Managed Security Services Please Provide Information on. |