Estimate a recommended cyber-insurance coverage limit and an indicative annual premium range from your revenue, industry, the volume of personal records you hold, and your security-control posture. Insurers now require MFA, EDR/MDR, tested backups, an incident-response plan and security training — this tool shows how each missing control pushes your premium up or risks non-coverage. Exports to Word.
Controls marked REQUIRED are baseline underwriting requirements in 2026 — most carriers will not bind a policy without them.
⚠️ This is an indicative estimate, not an insurance quote. Actual cyber-insurance premiums and limits are set by an underwriter from a full application, claims history, security questionnaire and the carrier's own model. Figures here are based on published 2025–2026 market ranges (commonly ~$1,000–$5,000/yr per $1M of limit for small businesses, with each additional $1M adding ~30–60%) and on the IBM/Verizon per-record breach-cost data; they will differ from your real terms. MFA and tested backups are now baseline underwriting requirements — without them many carriers will decline cover or apply large surcharges. Verify current rates with a licensed broker.