Skip to contentAbout Fig Group

Embedded Insurance

Turn compliance data into better insurance outcomes. Cyber, PI, D&O, and more.

Request a demoAll solutions

The challenge

Does this sound familiar?

Cyber insurance costs spike every renewal. Underwriters request evidence you don't have. Insurance claims require weeks of evidence assembly. Risk control improvements don't translate to premium reductions.

How Fig helps

Embedded Insurance with Fig

Risk-Based Pricing

Insurance premiums calculated from your live compliance and vulnerability data. Risk improvements automatically lower premiums. No premium surprises at renewal.

Claims Acceleration

Incident evidence is pre-documented in Fig. Claims can be submitted immediately with structured evidence packs. Claim authorisation time drops from weeks to days.

Multi-Coverage Support

Single compliance data feeds into cyber, professional indemnity, directors & officers, and crime insurance underwriting. Portfolio risk scores improve underwriting confidence.

MSP Revenue Model

Fig's platform pricing is subsidised through insurance partnerships. MSPs deliver better insurance outcomes to their clients through documented compliance evidence - the insurance benefit strengthens client relationships and retention.

Core Capability

Fig tracks cyber, D&O, professional indemnity, and property insurance policies with sublimit management, linking coverage data directly to compliance evidence and business continuity assessments.

Audit-ready workflow

How Embedded Insurance becomes evidence

Embedded Insurance should not be treated as a standalone tool surface. In Fig it is part of a governed workflow: a signal is captured, an owner is assigned, a control or risk is updated, and evidence is retained so the organisation can prove what happened later.

Lifecycle

Where it sits in the operating model

The Insure phase is where this capability sits in the wider Fig operating model. Cyber insurance costs spike every renewal. Underwriters request evidence you don't have. Insurance claims require weeks of evidence assembly. Risk control improvements don't translate to premium reductions. Fig turns that problem into a repeatable lifecycle so MSPs, risk teams, and auditors are not relying on static spreadsheets or ad hoc screenshots when a buyer asks for proof.

Evidence captured

What auditors and buyers see

For embedded insurance, useful evidence normally includes the triggering record, the affected asset or supplier, the control requirement, the assigned owner, the decision made, the timestamp, and the outcome. That evidence is mapped back to frameworks such as Cyber Essentials, ISO 27001, NIS2, DORA, GDPR, CMMC, and internal policy requirements where relevant.

Implementation checks

Four steps to roll this out

  • 01Define who owns embedded insurance and what events should trigger review.
  • 02Connect the relevant source systems so evidence is collected continuously.
  • 03Map outputs to the frameworks and policies that matter to the organisation.
  • 04Review exceptions, accepted risks, and overdue actions before audit or renewal.

Useful references

Independent sources buyers and auditors recognise

The exact evidence required still depends on your scope, risk profile, sector, and framework obligations.

External source
NCSC guidance for organisations
External source
NCSC Cyber Essentials overview
External source
ICO accountability framework
Fig Group
Fig platform overview
Fig Group
All Fig solutions
Fig Group
Discuss your framework scope

Built for you

Who uses this?

MSPs & MSSPs

Embedded insurance is a white-label MSP service. Your clients get compliance-driven insurance pricing with fewer rejected claims, strengthening your client relationships.

Learn more

Security & risk teams

Insurance premiums tied directly to your risk posture. Every control improvement and vulnerability remediation feeds into better rates at renewal. Claims go from evidence assembly to payout in days, not weeks.

Learn more

Compliance & audit

Insurance underwriters gain direct access to audit-ready compliance data. Claims are backed by contemporaneous evidence, reducing disputes and accelerating settlements.

Learn more

Common questions

Frequently asked questions

How quickly do premium improvements appear?

Compliance data is available within 48 hours of deployment. Premium improvements typically materialise at the next insurance renewal cycle, which is usually within 3-6 months. Some insurers offer mid-term adjustments for significant risk improvements.

What is our liability if a customer gets breached whilst using Fig?

Fig is a governance and compliance platform, not a security control. Liability depends on your insurance coverage, contractual terms, and the specific circumstances of the breach. Fig helps you document the controls you had in place, which strengthens your position with insurers and regulators.

Next step

See Embedded Insurance in action.

Book a walkthrough tailored to your frameworks and tooling.

Request a demoAll solutions