Cyber Liability Insurance NZ — Wording Comparison
Cyber liability — NZ commercial liability cover
Cyber liability covers both first-party costs (incident response, forensic, notification, business interruption, ransom) and third-party liability (privacy claims, regulator fines). NZ wordings differ on whether ransomware extortion payments are insurable and how Privacy Commissioner penalties interact with statutory liability.
FCIB panel — wording on file
Six NZ commercial insurers sit on the FCIB panel. The table below shows the wording version we have on file for each one, with its tier (A = current ≤ 12 months, B = stale 12–24 months, C = third-party mirror, D = historical). Empty rows mean we don't have a current wording on file — request the latest from the insurer via FCIB.
| Insurer | Wording on file | Effective | Tier | Source |
|---|---|---|---|---|
| Delta Insurance | Not on file | — | D | Request via FCIB |
| NZI | Not on file | — | — | Request via FCIB |
| QBE | Not on file | — | — | Request via FCIB |
| AIG | AIG CyberEdge | 2024-05-27 | B | |
| Zurich | Not on file | — | — | Request via FCIB |
| Dual New Zealand | Not on file | — | — | Request via FCIB |
What to look for in the wording
limit of indemnity optionsfirst party costs coveredthird party costs coveredransomware payment handlingbusiness interruption inclusionprivacy commissioner penalty handlingbreach notification costsforensic costs coveredkey exclusions