Cyber insurance for companies

Immediate expert assistance

Financial protection against cyber crime

Free prevention services

Calculate your premium now

Key points at a glance

Fast support in the event of a claim: If you have a suspected case or a claim, you can count on us to provide quick and straightforward help. Thanks to our 24/7 hotline, you can call on our cyber experts whenever you need them.
Comprehensive insurance coverage and prevention services: Our insurance offers comprehensive financial protection and free prevention services, including phishing awareness campaigns and alerts.
Individual additional benefits: Our additional coverage options can be tailored to industry-specific needs and new risks – for seamless cyber protection.

Calculate your premium now

Purchase advice: 052 269 21 60

Why do companies need cyber insurance?

Cyber attacks are among the biggest threats facing companies today. They have more than doubled since 2020, and they aren't restricted to large corporations. SMEs can be affected too. Hackers seek to get their hands on money, sensitive data or trade secrets. The repercussions can be severe: they can result in large financial losses, massively damage a company's reputation or even threaten its very existence.

Cyber insurance from AXA offers three levels of protection: preventive support to minimize risks, immediate assistance in an emergency, and compensation for the cost of fixing damage and restoring operations.

Cyber crime is on the increase

Over 59,000 cyber crime cases were reported in Switzerland in 2024 – 8% more than in 2023 and more than double the 2020 figure. The vast majority of these offenses – over 90% – were financial in nature, with phishing and identity theft in particular showing sharp rises.

(Source: police crime statistics from the Federal Statistical Office, March 2025)

Are SMEs also affected by cyber attacks?

Many small and medium-sized enterprises think they're too insignificant to be of interest to hackers, but cyber attacks are in fact a real threat to SMEs too, especially as they often have fewer resources available to protect themselves. Moreover, the spread of artificial intelligence is leading to faster, broader, and more effective cyber attacks.

The mistaken belief that your company is too small and uninteresting for hackers can prove very expensive. In the worst-case scenario, it can endanger the company's very existence. An interruption lasting just one week can result in a five-figure loss for a medium-sized firm. If subsequent costs for restoring data, crisis management, and legal advice are taken into account, the extent of the damage can easily triple. The good news is that many of these incidents can be avoided.

What does AXA cyber insurance cover?

Our insurance covers financial losses as well as the cost of compensation claims and measures to help you prevent reputational damage – not only in connection with cyber crime, but also due to mistakes made by your staff. Read on to find out all you need to know about the benefits.

Benefits of our cyber insurance

Insurance coverage	Benefits
Immediate assistance & expert support	24/7 hotline staffed by cyber experts Help in fixing damage Vulnerability analysis & prevention recommendations Coverage of crisis communication costs
Data & system restoration	Coverage of costs incurred in restoring data and systems, removing malware, and reinstalling and configuring systems
Business interruption	Compensation for loss of income Coverage of additional business continuity costs
Data protection violations	Coverage of costs for notifying authorities, the general public, and those affected as required by law
Liability claims	Compensation for justified damages claims Defense against unjustified claims

Free prevention services with cyber insurance

AXA's cyber insurance doesn't just insure you against losses, it also offers a free package of basic prevention services. These will help you to pinpoint vulnerabilities in your security setup and raise awareness among your staff, making it less likely that your company will fall victim to a cyber attack.

Basic prevention services package	Benefits
Security assessment	Ten-point check to provide a quick overview of potential cyber risks Online support for questions and problems
Vulnerability scan	A one-time automated scan to make an initial assessment of your IT vulnerabilities Notification of any vulnerabilities identified
Security awareness training	A license for interactive training courses on cyber risks affecting SMEs
Phishing awareness campaigns	Simulated phishing e-mails to raise employee awareness
Monitoring	Monitoring of one e-mail domain and one phone number on the internet and darknet Alerts when data leaks occur
Emergency plan	A pre-prepared strategy for dealing with emergencies
Alerts	Regular alerts about the latest cyber threats

Which optional extras are available with cyber insurance?

Depending on a company's size and the industry it operates in, it can make sense to add further components to cyber insurance coverage for tailor-made, all-round cyber protection.

Supplementary coverage for AXA cyber insurance

Add industry-specific supplementary coverage to your basic insurance and guard against new risks to ensure all-round cyber protection.

Manipulation of e-banking, web shops or goods deliveries: costs covered when money is stolen by manipulating payment apps, online shops or websites
Phone hacking and misuse of the IT system: additional costs resulting from unauthorized use of phone or IT systems covered
Social engineering: protection against financial damage due to targeted deception of staff by hackers
Cyber extortion: ransoms and negotiation costs reimbursed

Would you like us to advise you? Get in touch!

Documentation on cyber insurance for companies

Download

Frequently asked questions

Cyber crime is criminal activity that makes use of information and communication technology. It can take place anywhere people use internet-connected devices such as computers and smartphones, for example in companies or government offices, in the home or on the move.

It is especially dangerous because the perpetrators can strike at virtually any time from anywhere in the world and can easily cover their tracks. There are lots of different kinds of cyber attack, from stealing confidential data to infecting private or corporate computers with malware, for example by means of spam e-mails. Whatever their nature, cyber attacks have the potential to cause huge losses.

From business interruptions to theft of critical data and lasting damage to a company's reputation, the scope of cyber risks and the damage they can cause is broad.

Financial losses: The financial consequences of hacker attacks can include loss of income as a result of normal business being interrupted and high costs for recovering lost or stolen data. When these affect a company's competitiveness or even its share price, they can quickly threaten its very existence.
Damage due to data protection violations: Anyone who stores or processes customer data is required by law to protect them. If data protection is compromised and sensitive data are disclosed or misused as a result of a cyber attack, the company concerned could face legal and regulatory sanctions. Companies with business relationships in other European countries must also comply with the more stringent requirements of the EU's General Data Protection Regulation (GDPR).
Reputational damage: If a company is negligent in its handling of the theft or loss of data, public trust in it can be eroded, perhaps even to the point where it loses customers and business partners. Winning them back can be very hard work.

Claim scenario

Despite having the latest security software installed, a small business's entire IT infrastructure is infected with viruses. Some of its data are deleted, and some are corrupted. The operating system and applications have to be reinstalled, and the data backups have to be rolled back.

The system remains down for several days, making it impossible to serve customers, so they switch to a rival firm. AXA covers the cost of data recovery as well as the loss of income arising from the business interruption.

Cyber crime is often financially motivated, with hackers wanting to get rich from selling sensitive data or through blackmail. However, there can also be political or personal reasons for attacking a company's IT systems.

Money: Cyber crime is a lucrative business for both individuals and criminal organizations. They can make a lot of money by stealing and selling personal data or even goods, blackmailing victims for the release of locked data or manipulating staff.
Data theft: Attacks on corporate IT are often aimed at stealing customer data. E-mail addresses as well as credit card and login details are traded on underground websites and used for identity theft in further cyber attacks, for example.
Business secrets: Cyber criminals are also interested in intellectual property and trade secrets like strategies, plans, and recipes. Any company that is especially innovative or successful in a particular field and owns patents, copyrights or trademarks is at risk of falling victim to industrial espionage.
Personal motives: Some cyber attacks are all about power and control. A former employee might want to take revenge on your company, while others might simply enjoy the thrill of having power over their victims.
Political motives: "Hacktivists" are politically or ideologically motivated. They might attempt to disable the websites of governments, organizations or entire industries or bombard them with requests so as to make them unusable for extended periods.

People: Most cyber risks entail some kind of human interaction, so human nature is the biggest target for cyber crime. Criminals use a range of social engineering tricks to turn company staff into unwitting accomplices. They might invent fictitious security problems to persuade users to disclose their login details or use a fake identity to divert payment flows. This is why comprehensive protection against cyber risks must always include raising awareness among the company's staff. They need to know the dangers involved in using the internet and the company's other interfaces.

E-mails: Hackers use phishing e-mails to collect confidential data from a company's staff or infect its network with malware.

Clouds: Many small and medium-sized businesses use third-party cloud services to store their data. If these are manipulated, companies are sharing not just storage space and databases but viruses and Trojans as well.

Web: Criminals repeatedly succeed in hacking popular, trusted websites to circulate malware or divert users to harmful sites.

Wi-Fi: Public Wi-Fi hotspots are like an open door to hackers, making it easy for them to intercept confidential information and passwords.

As a rule of thumb, the more digitally networked your business is, the greater your need for cyber insurance will be. Even businesses that don't need computers or IT infrastructure for their main activity often rely on digital services – be it for online banking, internet telephony, digital management of customer appointments or using social media for marketing. Any of these are at risk from cyber attacks.

The security of any IT system depends entirely on the know-how of its users, so the biggest weaknesses can be found where this is at its poorest. The best way to protect against hackers and other online threats, even now, is thus to raise users' awareness of the risks and prevention methods. Our insurance includes a selection of free services.

Yes. All PCs and servers must have an anti-virus program, since malware can also get onto a computer via USB sticks and other tools.

Whenever the producer publishes one. Good protection is only guaranteed if the software is kept up to date.

Drive-by infections can happen when you visit a website and can cause problems that you might not even notice. Malware can install itself on your computer without needing you to actively click on a link or a download. To ensure that you don't fall victim to this type of insidious attack, you should set your firewall to block unsecure websites automatically. You should also never use an outdated browser.

Social engineers exploit human psychology by attempting to build up relationships with a company's employees with a view to stealing its data or gaining access to its IT systems. Examples of the techniques they use include fake phone calls in which they pretend to be technicians and contacting employees via social media. Another technique, known as the USB drop, plays on people's curiosity by strategically placing a "lost" USB stick infected with malware in the hope that an employee will connect it to a company PC.

A firewall is a security system that protects a PC, server or whole IT system against unauthorized access. It either lets data through or blocks them in line with its own specific rules.

Hackers use e-mails with fake sender information to trick staff into visiting highly convincing fake websites so that they can install malware on the company system or steal login details. The quality of phishing e-mails has improved dramatically. They used to be full of spelling mistakes and bad grammar and use the wrong form of address, but it's much harder these days to tell them apart from legitimate e-mails in terms of the way they look and their content. You can learn more about phishing here.

A man with curly hair and glasses works in a server room, holding a laptop and checking cables in a server rack.

Is your company legally protected against online risks?

Cyber attacks, data loss, extortion: hackers like to target small and medium-sized enterprises (SMEs), which tend to have less effective protection against cyber attacks than large corporations.

To the blog

Minimize cyber risks and guard against losses Cyber insurance for companies