Product Updates

The improved Cyber Safe provides even more comprehensive protection for your customers

John Braun
published on
23.06.2026
-
min. estimated reading time
Share on
Table of Contents

Digital risks are evolving dynamically, requiring protection concepts that keep pace. To ensure your clients are comprehensively protected at all times, Baobab Risk Solutions continuously analyzes and optimizes its coverage concepts. As a result of this ongoing adaptation, the revised cyber insurance Cyber Safe is now integrated into the Baobab broker portal and live. 

The updates reflect the current threat landscape and the digital reality for SMEs, where shifting digital risks, human error, and technical defects are part of everyday business. For your clients, the optimized policy terms mean seamless protection of their livelihood without bureaucratic hurdles and with immediate financial relief in an emergency. At the same time, you gain strong, straightforward sales arguments for your cyber business in the second half of the year.

The core components of the improved Cyber Safe

The product update optimizes coverage for the mid-market and reduces administrative effort in sales through four key adjustments:

  • Streamlined application process: Risk controls have been consolidated, shortening the entire process by over 50%. For companies with up to €100 million in revenue, only seven questions are asked, with just two being risk-relevant. Companies with up to €500 million in revenue now face only 9 risk questions.
  • New clauses: Important terms have been adapted to the reality of SMEs. These include, among others, the double maximization of the sum insured, seamless 24-hour coverage for prior contracts, and the extension of cloud protection to include free accounts and providers without ISO certification.
  • Improved sub-limits: Sub-limits have been strategically adjusted to the current threat landscape. Cyber fraud and cyber theft, including telecommunications fraud, are covered up to €250,000. Extortion-related payments are fully covered up to a liability limit of €1 million, with 100% coverage beyond that if multi-factor authentication (MFA) is active.
  • Reduced minimum deductibles: The financial risk in the event of a claim has been lowered. The potential deductible per revenue bracket has been significantly reduced, now starting at an attractive €500 for businesses with up to €50 million in revenue and €5,000 for companies with up to €250 million in revenue.

Practical added value for SMEs: Comprehensive coverage and special clauses

The revision of the policy terms is closely aligned with the real risks and operational structures of modern companies. The update offers clients significantly more comprehensive coverage, special clauses for immediate protection, and expanded assistance in the event of a claim through the following policy improvements:

  • 100% cloud protection without mandatory certification: Business interruptions due to cloud outages are fully covered. The restriction to paid services has been removed: free cloud plans and providers without ISO 27001 certification are now covered, provided a contractual relationship exists. Furthermore, the inclusion of data held by third-party providers and on websites (e.g., Amazon accounts) has been clarified, and the sub-limit for cloud outages without ISO certification has been eliminated.
  • Immediate coverage for business interruption: The waiting period has been reduced from 12 to 8 hours and begins immediately upon the occurrence of the loss. Coverage is triggered by the mere occurrence of the damage – prior identification or confirmation by company representatives is no longer required.
  • 48-hour no-cost guarantee in an emergency: In the first 48 hours following an incident, Baobab covers the full cost of emergency response services. During this period, these costs are not subject to a deductible, nor do they reduce the sum insured, ensuring the full limit remains available for subsequent compensation claims.
  • Extended hardware protection: The restriction "without physical damage to the insured computer system" has been removed. As a result, material damage to IT hardware caused by a cyberattack is now covered up to €1 million.
  • Expanded coverage for third-party damages and technical defects: Third-party liability now explicitly includes triggers caused by operator error or programming faults (e.g., the transmission of a virus). Furthermore, coverage for emergency response costs now includes technical issues and data breaches as triggers.
  • Safety net for multiple incidents: For clients with revenue up to €100 million, the sum insured is doubled per policy year (up to a maximum of €3 million), provided that multi-factor authentication (MFA) is active.
  • Clarifications and deadlines: The main policy wording now integrates a clause for seamless 24-hour coverage following a previous contract to prevent gaps in coverage when switching providers. Additionally, a clarification regarding the inclusion of non-targeted attacks has been added, and the notification period for increased risk has been extended from "immediately" to three months.

The sales advantage for you as a broker

This update significantly reduces the administrative burden during the placement process and provides you with strong, purely transactional arguments for closing the deal:

  • Data-driven underwriting precision: Based on experience from recent years, redundancies have been eliminated, and blanket questions regarding individual user accounts or emergency plans have been removed. Instead, data-based underwriting places greater weight on effective risk controls, such as identity management via multi-factor authentication (MFA).
  • Massively shortened application process: The entire process has been reduced by over 50%. For companies with revenue up to €100 million, only seven questions need to be answered, of which only two are risk-relevant. Larger companies with revenue up to €500 million also benefit from a streamlined structure with only 9 risk questions.
  • High-impact tariff incentives: The reduced minimum deductibles provide you with a straightforward leverage point in client discussions. The deductible drops to an attractive €500 for businesses with revenue up to €50 million and to €5,000 for companies with revenue up to €250 million.

Integrated prevention and proactive protection

You are not just selling a policy; you are selling an active protection concept. In addition to the coverage provided by Cyber Safe, companies have access to integrated, free prevention services: continuous security reports via Deep Scan & Dark Web Monitoring, phishing simulations, awareness training, and comprehensive incident response management. As an optional, additional layer of protection, the Baobab MDR (Managed Detection and Response) service is also available to stop attacks early through 24/7 monitoring.

Create a quote now


The improved terms are already live on the Baobab broker portal and on CyberDirekt. You can now create an optimized quote in the broker portal immediately. We also offer regular webinars and sales materials for insurance brokers—simply contact your personal Baobab representative for more information. 

Not a partner yet? You can either create a non-binding account for our broker portal or contact us at baobab.io/kontakt.

FAQ

1. Where can the new terms be viewed?

The complete, revised policy documents are already available. Simply check the broker portal or speak to your personal Baobab representative. 

2. What sublimits apply to extortion and theft?

For extortion-related payments, there is 100% coverage up to a liability limit of €1,000,000. For liability limits above €1,000,000, Baobab provides 100% coverage provided MFA is active (otherwise 50%). Cyber fraud coverage (e.g., fake president fraud) and cyber theft, including telecommunications fraud, are covered up to a maximum of €250,000.

3. Who underwrites the risk?

The coverage continues to be provided by the established, A+ rated capacity provider, Lloyd's.

The blog post was written by