Cyber Insurance Comparison UK 2026

UK businesses increasingly buy cyber insurance to recover from data breaches, ransomware, and IT outages. This comparison sets six UK cyber insurance providers side by side across the cover areas that matter, using the FCA Register, the Association of British Insurers, and National Cyber Security Centre guidance. It is data-driven rather than rated. Kael Tripton does not provide quotes, does not route enquiries to brokers, and does not earn commission from any provider mentioned.

Comparison methodology

This comparison includes six providers active in UK cyber insurance, chosen to span specialist cyber insurers and large general insurers, so readers can see the range of the market. The dimensions compared are the cover areas the ABI identifies as core: data breach response, business interruption, cyber extortion, first-party loss, third-party liability, and incident response, plus distribution and FCA authorisation.

Providers are listed alphabetically with no ranking implied. Cover details reflect the general structure of cyber policies and the providers' published material; the precise terms, limits, and exclusions are set in each policy wording. FCA reference numbers are shown where independently confirmed on the FCA Register at register.fca.org.uk, accessed June 2026; specialist underwriters accessed through brokers are marked for verification.

Cyber insurance comparison table

All six providers offer the core cyber cover areas the ABI identifies, but limits, sub-limits, and exclusions differ in the wording. FCA reference numbers are from the FCA Register, accessed June 2026; entries marked "Verify" are specialist underwriters that should be confirmed on the Register, often via a broker.

Reading the comparison

On the surface, cyber policies look similar because the market has converged on a common set of cover areas: data breach response, business interruption, cyber extortion, third-party liability, and incident response. The ABI describes these as the building blocks of a cyber policy, and all six providers here offer them. The real differences sit in the detail of the wording rather than the presence of a section.

Data breach response is often the most-used part of a policy. It typically funds notifying affected individuals, IT forensic investigation, public relations, legal advice, and the cost of responding to a regulator such as the Information Commissioner's Office. Because a breach can trigger UK data protection obligations, the speed and quality of this response matters, which is why 24/7 incident response is a key feature rather than an extra.

Business interruption and cyber extortion are where claims can be largest. Business interruption covers lost income while systems are down, and cyber extortion covers ransomware demands and the specialist negotiation around them. The NCSC, with the ABI, BIBA, and IUA, publishes joint guidance for organisations facing ransom demands, reflecting how serious these incidents have become. The ABI reported that nearly £200 million was paid in cyber claims to help UK businesses recover, which underlines the scale of the risk.

The dimensions that separate policies are the limits and sub-limits, the waiting period before business interruption pays, the conditions the insurer requires for cover to apply, and the exclusions. Many insurers now require baseline security controls, such as multi-factor authentication and tested backups, as a condition of cover or of paying a ransomware claim. Read these conditions carefully, because failing to meet them can reduce or void a claim regardless of which provider you choose.

Provider-by-provider context

Hiscox

Authorised by the FCA under reference 113849, Hiscox is a major player in UK cyber and data insurance for SMEs and larger businesses, combining cover with practical risk management support, sold direct and through brokers.

Aviva

Authorised under reference 202153, Aviva offers cyber cover within its commercial range for SMEs and larger organisations, distributed through brokers and directly.

Zurich

Authorised under reference 203093, Zurich provides cyber cover for businesses through brokers and the Zurich Business channel, integrated with its wider commercial offering.

CFC

CFC is a London-based specialist cyber insurer with a strong presence in the SME and mid-market segment, known for fast claims handling. Confirm the authorised underwriter and your broker on the FCA Register.

Beazley

Beazley underwrites cyber insurance across SME to enterprise risks and is typically accessed through brokers. Confirm the authorised entity and managing agent on the FCA Register and within the Lloyd's market.

Markel

Markel offers cyber products aimed at small businesses and start-ups. Confirm the authorised entity on the FCA Register before purchase.

How to choose between these providers

Start with the controls you have in place, because insurers increasingly price and even decline cover based on baseline security such as multi-factor authentication, patching, and backups. Improving these can widen your options and lower your premium. Then size the limits to your exposure: the cost of a serious breach includes response, lost income, and potential liability, not just immediate clean-up.

Compare the waiting period for business interruption, the sub-limits for ransomware and breach response, and the incident response panel each insurer provides, since the quality of the response team shapes how well you recover. Check the exclusions and the security conditions you must maintain. It also helps to ask each insurer what proactive monitoring or vulnerability scanning it provides as part of the policy, because some cyber insurers actively alert policyholders to threats before they become claims. Finally, verify the insurer and any broker on the FCA Register before buying, and remember eligible disputes can go to the Financial Ombudsman Service.

Frequently asked questions

What does cyber insurance cover?

The ABI identifies core areas as data breach response, business interruption from a cyber event, cyber extortion, and first and third-party losses, supported by 24/7 incident response. Limits and exclusions vary by policy.

Does cyber insurance cover ransomware?

Yes, cyber extortion cover responds to ransomware, typically funding specialist negotiation and, where lawful and within the policy, the costs involved. The NCSC and insurance bodies publish joint guidance for organisations facing ransom demands.

Do I need security controls to get cyber cover?

Increasingly, yes. Many insurers require baseline controls such as multi-factor authentication and tested backups as a condition of cover or of paying a claim. Meeting these can also improve pricing and availability.

What is the difference between first and third-party cyber cover?

First-party cover meets the business' own direct losses, such as breach response, lost income, and damage to digital assets. Third-party cover meets liability claims brought against the business arising from a cyber event.

How big can cyber claims be?

They can be substantial. The ABI reported that nearly £200 million was paid in cyber claims to help UK businesses recover, reflecting costs from breaches, ransomware, and interruption.

How do I check a cyber insurer is authorised?

Search the firm on the FCA Register at register.fca.org.uk. For specialist underwriters accessed via a broker, confirm both the broker and the underwriter, and refer eligible disputes to the Financial Ombudsman Service.