Does Bitdefender offer a warranty that provides protection in the event of a breach?

Yes, Bitdefender offers a cybersecurity breach warranty as part of our Bitdefender MDR and Bitdefender MDR PLUS services that covers customers with up to $1,000,000 in breach response expenses if there is a security incident within the environment protected by Bitdefender MDR or Bitdefender MDR PLUS.

What is Bitdefender MDR and MDR PLUS?

Bitdefender MDR is a managed security service that provides 24x7 defense against cyber threats delivered through our global Security Operations Centers (SOCs). The service includes the underlying security platform (GravityZone Business Security Enterprise (BSE)) and the continuous monitoring and response to threats

 

Bitdefender MDR PLUS gives all the protections of MDR and adds the most comprehensive dark web detection and response available performed by a designated, specialized Cyber Intelligence Fusion Cell (CIFC) unit, additional comprehensive threat intelligence reporting, a dedicated Security Account Manager (SAM), and Professional Services onboarding. 

Can customers get the warranty coverage now?

 

Warranty coverage is currently available for all customers of Bitdefender MDR and Bitdefender MDR PLUS. Existing customers have been enrolled and will be fully signed on to the warranty once they accept the additional terms and conditions in the portal. All new MDR or MDR PLUS customers will be opted in to the warranty coverage when they sign the MDR subscription contract and must accept an additional series of terms and conditions. Customers may choose to opt out of the warranty coverage if desired.

Do customers of MDR Foundations, Premium, and Enterprise get warranty coverage now?

No, customers on previous tiers of the MDR service do not receive warranty coverage. Customers will be transitioned to either MDR or MDR PLUS upon contract renewal and will then receive this breach warranty coverage.

How much does the warranty cost?

The warranty is included at no additional cost with the purchase of Bitdefender MDR or MDR PLUS subscription. This warranty is a purely value-add benefit for the customer.

What are the warranty coverage tiers and how is the amount of the warranty determined?

  • The tiers are tied to the MDR plan you have with one exception:

  • Bitdefender Breach Warranty (for MDR)

  • Bitdefender Breach Warranty PLUS (for MDR PLUS)

  • Bitdefender Breach Warranty PLUS (for customers on Bitdefender MDR with 1000+ endpoints). 

What security incidents are covered by the warranty?

  • For the base Breach Warranty, it covers Ransomware events which includes breach notification costs, compliance and regulatory penalties, and business income loss in relation to the ransomware event. 
  • For Breach Warranty PLUS it covers:
    • Ransomware: Ransomware, including remediation and ransoms 
    • Business Email Compromise: A BEC event resulting in funds transfer or invoice fraud, including remediation and lost funds 
    • Compliance and Regulatory Failure: A cyber breach that triggers HIPAA, PCI, OSHA, and/or state related violations and results in a regulatory penalty, fine, or related expenses 
    • Cyber Legal Liability: a suit arising out of a cyberattack, including loss or misuse of data, or a media peril related to your website where legal defense and settlement costs are incurred 
    • Business Income Loss: A security breach that results in the loss of business income (net profit or loss before income taxes), and/or any continuing operating expenses affected by it. 

What expenses are covered under the warranty in the event of a Security Events?

Breach notification costs, compliance and regulatory penalties, and business income loss in relation to the security incident covered.

What is required for a customer to receive the warranty protections?

The customer must subscribe to Bitdefender MDR or MDR PLUS and agree to the additional warranty terms and conditions.

What time period is covered by the warranty?

The warranty is tied to your MDR or MDR PLUS subscription and will last the duration of the contract period.

Can the warranty be offered by partners and resellers? What about other Managed Service Providers (MSPs)?

Yes. Since the Breach Warranty is built into the licensing for MDR and MDR PLUS, any partners and resellers who sell MDR and MDR PLUS will also include the Breach Warranty. The Breach warranty, however, is not available for MDR foundations for MSP. That means MSP and RMM (Partners) who sell MDR Foundations for MSP are not eligible for the warranty..

Who underwrites the warranty?

Bitdefender has partnered with Cysurance, the underwriter, to offer this cybersecurity breach warranty. Cysurance is a next-generation risk mitigation company that certifies, warranties, and insures cybersecurity solutions for enterprise end-users. Customers of Bitdefenders MDR or MDR PLUS service will be automatically onboarded into Cysurance’s system to activate the warranty.

How does Bitdefender MDR and MDR PLUS impact me if I’m looking at obtaining cyber insurance?

Cysurance as the underwriter of the warranty, also offers cyber insurance policies. They offer possible premium discounts for customers who have obtained their breach warranty through valid providers like Bitdefender. Please see their site for more details.

Can I negotiate the terms and conditions of the warranty?

No. The warranty agreement and terms and conditions are pre-defined by Cysurance. Customers can opt out of the warranty if they do not agree to the terms and conditions.

Are there requirements I must meet to ensure I qualify for a warranty submission?

Yes, these are covered in the terms and conditions you must agree. These requirements consists of the following but are subject to change at the discretion of Cysurance: 

  • The customer must be a current subscriber of Bitdefender MDR or MDR PLUS, in good standing, for the portion of their environment in which the event occurs. 
  • Multi-factor authentication must be deployed on email and all essential servers. 
  • Customer must perform commercially reasonable maintenance, including applying patches and updates within 60 days of the release cycle.  
  • Customer must deploy an offline backup solution for critical business data.  
  • Customer must adhere to any state, federal, and/or regulatory privacy and security policies related to which they are subject, including but not limited to PCI, HIPAA, and SEC standards. 
  • Customer must verify and document out-of-cycle wire requests, invoice and/or payment routing number changes. 
  • All events must be verified through log/event data. 360 Protect will not respond to a systemic failure of your infrastructure that results in a ransom compromise to your covered service 

Can I buy the warranty if I do not subscribe to Bitdefender MDR or MDR PLUS?

No. This warranty is only offered as part of the subscription to Bitdefender MDR or MDR PLUS as a no-cost benefit to customers.

If I suspect a breach when Bitdefender MDR or MDR PLUS is purchased, is it possible to get the benefits of the warranty? What about pre-existing events?

Any new Bitdefender MDR or MDR PLUS customer is eligible for the warranty; however, pre-existing security incidents are not covered.

How do I qualify to be eligible for the breach warranty?

All customers of Bitdefender MDR or MDR PLUS are automatically qualified and enrolled in the warranty once they agree to the additional terms and conditions. Customers are encouraged to review the terms and conditions to ensure they are staying on top of the requirements for qualifying for a warranty claim. See warranty claim requirement question above for additional details.

Are there events that are excluded from the warranty coverage?

Breach Warranty for MDR only covers Ransomware based events. Breach Warranty for MDR PLUS covers any security incident, see table above under question “What are the warranty coverage tiers and how is the amount of the warranty determined?”

Is the warranty valid in all regions?

The warranty is valid in all regions in which we operate. Please note that there is special language in the Terms and Conditions in the following countries: Malaysia, Singapore, and Japan.

Proven. Unsurpassed Cybersecurity Effectiveness.

We’re here to help you choose the solution or service that’s right for your business.