A definitive guide for UK professional services firms (solicitors, accountants, IFAs, wealth managers, consultancies, IT firms, architects, marketing agencies) to the interaction between cyber insurance and professional indemnity insurance.
One hub page, ten spokes, around 28,000 words total.
If you have a live incident: open the hub page, work through the decision tree section, then read the spoke most relevant to your incident.
If you are preparing for renewal: read the hub end-to-end, then read spoke 6 (notification) and spoke 10 (renewal disclosure).
If you are a buyer thinking about programme architecture: read the hub, then read spokes 1, 3 and 7 in turn.
If you are a finance partner or COO modelling exposure: read spokes 5, 7 and 8 together.
Cyber vs Professional Indemnity Insurance: Where Cover Ends and Begins — ~4,800 words
The single most important article. Covers the 60-second answer, the five overlap zones, the five gap zones, the decision tree, the notification problem, aggregation, the practical buyer checklist and a 15-question FAQ.
Spoke 1 — Solicitor data breach claim: cyber or PI? Worked example of a phishing-induced exfiltration affecting 312 data subjects. Coverage analysis under cyber and PI, the overlap, the coordination memorandum approach, the numerical waterfall.
Spoke 2 — Wire fraud via compromised email: who pays? The rising conveyancing scam. Four-way puzzle between cyber, PI, crime insurance and the APP fraud Mandatory Reimbursement Scheme.
Spoke 3 — Ransomware affecting client deliverables: claim coverage analysis Architect’s practice misses a planning deadline. Cyber pays the ransom and BI; PI pays the £2.4m client claim — subject to the cyber exclusion’s carve-back drafting.
Spoke 4 — IP infringement using AI-generated content: cyber, PI, or neither? The emerging risk for creative firms. Output similarity claims, training data exposure, model provider indemnities, PI IP carve-back, cyber media liability.
Spoke 5 — Data Protection Act 2018 / UK GDPR civil claims Article 82 claims, Lloyd v Google, Vidal-Hall, Stadler v Currys, group action mechanics, ICO action vs civil action.
Spoke 6 — The notification clock problem The four clocks running in parallel: ICO Article 33, data subjects Article 34, cyber policy, PI circumstances. The precautionary circumstances notification and why it is essentially free insurance.
Spoke 7 — Business interruption from cyber attack Waiting period, period of indemnity, “but-for” calculation, increased cost of working, contingent BI, and the long-tail loss that no policy reaches.
Spoke 8 — Reputational damage post-breach PR cover, brand restoration, stigma loss, contract loss, the structural reason this exposure is uninsured for most of its scale.
Spoke 9 — Cyber insurance for IFAs and wealth managers SYSC 4.1, PS21/3 operational resilience, PRA Aug 2022 letter, SUP 15.3.11R notifiable events, Consumer Duty, FCA s.166 skilled persons reports.
Spoke 10 — Broker due diligence at PI renewal Section 3 Insurance Act 2015 fair presentation, materiality of cyber incidents on PI proposals, section 8 proportionate remedies, the path-A versus path-B worked example.
See 00-cross-link-map.md for the full link structure.
Researched, drafted and maintained by Apex Insurance Brokers Limited. We are authorised and regulated by the Financial Conduct Authority, FRN 724952. We place cyber, PI and professional risk programmes for professional services firms across the UK.
This guide is insurance and legal commentary, not advice on your specific cover. Cyber and PI policy wordings vary materially across insurers — always read your specific policy or ask your broker.
For a coverage co-ordination review of your existing cyber and PI programme, or for a placement of either policy, please contact us.
v1.0 — Published 4 June 2026 — Initial publication.
The guide is reviewed annually, with material updates published as the market or case law develops.
Apex Insurance Brokers serves UK professional services firms and commercial businesses. Call 0117 325 0027, email hello@apexinsurancebrokers.co.uk, or request a quotation.
Get a quote