Cogitanda
{{#invoke:infobox|infoboxTemplate|child= | bodyclass = vcard
| above =
| subheader = COGITANDA Dataprotect AG | subheaderstyle = font-weight:bold; font-size:105%;
| image = {{#invoke:InfoboxImage|InfoboxImage|image=Logo of Cogitanda.svg|size=|sizedefault=frameless|alt=Cogitanda logo}} | caption =
| header1 = Corporate identity
| label2 = Type | data2 = Private — cyber insurtech MGA (Assekuradeur) | class2 = category
| label3 = Traded as | data3 =
| label4 = ISIN | data4 =
| label5 = LEI | data5 =
| label6 = Registration number | data6 =
| label7 = Regulated | data7 =
| label8 = License type | data8 =
| label9 = NPN | data9 =
| label10 = Coverholder reference | data10 =
| label11 = License number | data11 =
| label12 = Incorporation | data12 = Germany
| label13 = Founded | data13 = 2016{{#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Start date and age with unknown parameter "_VALUE_"|showblankpositional=1| 1 | 2 | 3 | br | df | end | p | paren }}
| label14 = Headquarters | data14 = Flensburg, Germany | class14 = label
| label15 = Country | data15 =
| label16 = Domicile | data16 = Germany
| label17 = Licensed jurisdictions
| data17 = Germany
Austria
| label18 = Regulator | data18 =
| label19 = Ultimate parent | data19 = DGC AG
| label20 = Major shareholders | data20 = DGC AG
| label21 = Group status | data21 =
| label22 = Key people
| data22 = Walid Schalesi, Group Chief Actuary
Alain Bianco, Group Chief Underwriting Officer
| label23 = Number of employees | data23 = approximately 70 (March 2025)
| header24 = Business & markets
| label25 = Operating status | data25 =
| label26 = Customer segments
| data26 = Small and medium-sized enterprises
Industrial companies
| label27 = Lines of business | data27 = Cyber insurance
| label28 = Business segments | data28 =
| label29 = Main products & services
| data29 = Cyber Pro+
CYBERPROTECTION
| label30 = Technology platform
| data30 = cyberscan.io (vulnerability detection)
AXON (broker quoting portal)
Cyber Defence Operation Center (CDOC)
| label31 = Capacity providers
| data31 = SV SparkassenVersicherung Gebäudeversicherung AG
Württembergische Versicherung AG
Everest Insurance
IQUW
| label32 = Distribution | data32 = Broker-centric; portal-driven
| label33 = Geographic markets
| data33 = Germany
Austria
| label34 = Branches | data34 =
| label35 = Customers served | data35 =
| label36 = Competitors
| data36 = Stoïk
Eye Security
Baobab Insurance
At-Bay
Coalition
Corvus Insurance
Cowbell
Resilience
| label37 = Market share rank | data37 =
| header38 =
| label39 = Currency | data39 =
| label40 = Market cap | data40 =
| label41 = Revenue | data41 =
| label42 = Insurance revenue | data42 =
| label43 = Operating income | data43 =
| label44 = EBITDA | data44 =
| label45 = Net income | data45 =
| label46 = Gross written premium | data46 =
| label47 = Net written premium | data47 =
| label48 = Loss ratio | data48 =
| label49 = Combined ratio | data49 =
| label50 = Commission / MGA fee | data50 =
| label51 = Total assets | data51 =
| label52 = Invested assets | data52 =
| label53 = Technical reserves | data53 =
| label54 = Contractual service margin | data54 =
| label55 = Net debt | data55 =
| label56 = Equity | data56 =
| label57 = Operating margin | data57 =
| label58 = Solvency ratio | data58 =
| label59 = Return on equity | data59 =
| label60 = Total funding raised | data60 =
| label61 = Last funding round | data61 =
| label62 = Last known valuation | data62 =
| label63 = Lead investors | data63 =
| label64 = Capital structure | data64 =
| label65 = Insurer financial strength | data65 =
| label66 = Capacity partner ratings | data66 =
| label67 = External ratings | data67 =
| data68 =
}}{{#invoke:Check for unknown parameters|check|unknown=|preview = Page using Template:Infobox company with unknown parameter "_VALUE_"|ignoreblank=y | address | alt | branches | capacity_partner_ratings | capacity_providers | capital_structure | caption | child | combined_ratio | commission_rate | competitors | country | coverholder_ref | csm | currency | customer_segments | distribution | domicile | ebitda | embed | equity | exchange | financial_year | footnotes | founded | geographic_markets | group_status | gwp | headquarter | headquarters | ifsr | image | image_size | imagesize | incorporated | incorporation | insurance_jurisdictions | insurance_revenue | invested_assets | isin | key_people | last_round | last_valuation | lead_investors | legal_name | lei | license_number | license_type | lines_of_business | logo | logo_alt | logo_caption | logo_size | loss_ratio | market_cap | market_share_rank | markets_served | name | net_debt | net_income | npn | num_customers | num_employees | nwp | operating_income | operating_margin | operating_status | parent | products | ratings | registered | registration_number | regulated | regulator | reporting_year | revenue | roe | segments | shareholders | shareholders_equity | solvency_ratio | status_in_group | supervisory_authority | technology_platform | technical_reserves | ticker | total_assets | total_funding | total_revenue | type | ultimate_parent }}
The following sections provide further details.
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Corporate profile
🏢 German cyber MGA. Cogitanda is a Germany-origin cyber risk specialist that combines cyber insurance distribution and underwriting design with cyber risk prevention and claims-coordination services. The pre-insolvency operating model was that of an Assekuradeur — the German market equivalent of an MGA operating under delegated authority — paired with in-house cyber prevention and incident management capabilities.[1] The company was founded in 2016 and historically operated from Germany, with documented expansion into Austria for at least part of its cyber product offering.[2][3]
⚠️ Insolvency and acquisition. A material corporate discontinuity occurred between late 2024 and early 2025. Multiple Cogitanda group entities entered insolvency proceedings, and the operating business was transferred via an asset deal to a subsidiary of DGC AG, with the Cogitanda brand retained and operations stated as continuing.[2] The insolvency was filed in November 2024, at which point a preliminary insolvency administrator was appointed and continuity of customer coverage was asserted.[4] The asset deal closed in March 2025, and the company now operates under the DGC group umbrella with headquarters in Flensburg.[5]
🏛️ Pre-insolvency group entities. The most consistently documented group perimeter during the insolvency and sale process comprised five entities: COGITANDA Dataprotect AG, COGITANDA Risk Prevention GmbH (cyber prevention services), COGITANDA Insurance Services GmbH (part of the Assekuradeur model), COGITANDA Claims Services GmbH (claims and incident services), and COGITANDA Managed Services GmbH (managed services), all domiciled in Germany.[1] Buyer-side counsel characterized the group's integrated model as delegated-authority cyber policy placement with multiple risk carriers, end-to-end claims management on behalf of carriers, and prevention services for insureds and brokers.[1]
📋 Regulatory posture. Available evidence points to a delegated-authority model with external risk carriers rather than Cogitanda retaining insurance risk on its own balance sheet.[1] The operating model is broker- and MGA-like — involving delegated authority, multiple risk carriers, and broker distribution — which in Germany typically implies reliance on insurance distribution permissions and registers rather than an insurer authorization. A relationship with Lloyd's syndicate IQUW providing capacity has been reported, though no Lloyd's coverholder number is disclosed.[3]
👥 Scale. During the preliminary insolvency process, total group employees were approximately 150, secured through insolvency wage pre-financing to the end of January 2025.[4] In the asset sale, approximately 70 employees were secured with the transfer.[1] Following the acquisition, DGC's group headcount increased to over 100 employees across Flensburg and Cologne, though this is a group-wide figure and not Cogitanda on a standalone basis.[2]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Leadership and governance
🪦 Founder. Jörg Wälder founded Cogitanda and served as its central leadership figure. His sudden death in 2023 is widely cited as a key destabilizing event that preceded the company's economic difficulties and subsequent insolvency filing.[2]
👔 Current leadership. The acquisition-era materials confirm continuity of the core team and key personnel, though a full role-by-role roster is not publicly available.[2] Named executives referenced in company-controlled channels include Walid Schalesi (Group Chief Actuary) and Alain Bianco (Group Chief Underwriting Officer).[6] Jens Lison was quoted in 2024 capacity and market expansion coverage as CEO of COGITANDA Dataprotect AG, though that reference predates the acquisition and may not reflect his current role.[3]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Business model
🔄 Integrated cyber specialist. Cogitanda's model spans three interconnected functions: delegated-authority placement of cyber insurance products with multiple external risk carriers, end-to-end cyber claims management services performed for those carriers, and cyber risk prevention services delivered to policyholders and broker networks.[1] The current website positions this combined offering as "360° cyber protection," integrating prevention, monitoring, insurance, and crisis management alongside DGC's cybersecurity capabilities.[5]
🌍 Geographic footprint. Cogitanda historically operated in Germany with broker distribution and German-language product materials.[7] Market expansion and capacity commentary indicate an Austrian component for at least part of the cyber product offering, with the Everest and IQUW partnership specifically targeting clients in Germany and Austria with revenues up to €250 million.[3]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Cyber insurance products
📦 Legacy product family. The established pre-2025 cyber product, "Cyber Pro+," was a configurable offering accessed via an online portal and coverage configurator for broker partners.[8] The product was modular, organized around five coverage groups: attacks on reputation and identity, attacks on payment methods and accounts, attacks on hardware/software and data, business interruption, and liability and data protection incidents.[7] A comparative market study references formal policy conditions (AVB COGITANDA Cyber Pro+ Version 1.0, dated July 26, 2019), confirming the product's maturity by that date.[9]
🚀 Post-acquisition product. Following the DGC acquisition, "CYBERPROTECTION" was launched as a new cyber insurance product featuring a digital application workflow and a "CYBERPROTECTION Check" risk assessment component.[5] Company communications describe tiered structuring (Smart, Advanced, Extended) with quantitative underwriting workflow signals, including streamlined risk questioning below certain revenue thresholds and a stated maximum capacity figure.[10]
🛡️ First-party coverages. The five coverage groups encompass reputational harm and identity restoration costs, cybercrime and funds-transfer-related losses, data restoration and system repair costs, and business interruption.[7] An additional component described as "technical insurance" (electronics and machinery insurance) was positioned as a unique supplementary coverage protecting electronics and machines, with simplified declaration mechanics that do not require device listing or subsequent reporting obligations for new devices.[7]
⚖️ Third-party coverages and claims services. The liability and data protection incidents coverage group indicates inclusion of third-party liability and privacy/data protection incident coverage within the configurable product structure.[7] Cogitanda's emergency plan details embedded incident coordination including a 24/7 cyber claims hotline (Germany and international numbers), an incident reporting email address, prompt assembly of an expert crisis team with potential on-site support, and structured daily technical and management briefings during response. Operational guidance emphasizes preserving forensic integrity during incidents.[11]
⚔️ War exclusion. Cyber Pro+ contained an explicit war exclusion clause within its general policy conditions, as documented in a comparative war-clause study across cyber insurers.[9] Ambiguous war constructs in cyber insurance can create coverage uncertainty and litigation risk, particularly in relation to state-sponsored cyber events and attribution disputes — an issue of broad market relevance to cyber underwriting and claims.[12]
🎯 Segment targeting. Legacy materials describe servicing small and medium-sized as well as industrial companies, implying a target market extending beyond micro-SME packaged business.[8] The CYBERPROTECTION product introduces additional tiering and digitized workflows intended to streamline underwriting for specific revenue bands.[10]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Cybersecurity services
🔍 Prevention and monitoring. Cogitanda's current website emphasizes prevention services that draw on DGC's cybersecurity capabilities, including external vulnerability detection and monitoring via the cyberscan.io platform, penetration testing, security awareness training, and a 24/7 Cyber Defence Operation Center (CDOC).[5] Legacy brochures also describe a prevention stack encompassing employee training, audits, vulnerability analyses, and monitoring.[13]
🚨 Post-incident response. The emergency plan document provides a detailed depiction of crisis orchestration steps and the data requirements for coordinated response, including server and client counts, network topology, logs, communications records, backup status, and law enforcement reference information.[11] This operational workflow reflects embedded crisis management and incident coordination capability within the insurance product offering.
💼 Service delivery model. Legacy materials indicate that prevention services can be provided on request and that the group combines insurance with cyber prevention services.[7] The post-acquisition positioning under DGC further integrates the cybersecurity service stack, leveraging DGC's security operations infrastructure alongside Cogitanda's insurance-specific processes.[5]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Distribution and capacity
🤝 Broker-centric distribution. Cogitanda's distribution model centers on broker and partner networks, evidenced by a dedicated onboarding flow for broker partners, a portal-driven process for configuring coverage and generating placements, and customer guidance directing insureds to work through their insurance broker.[8] Third-party broker commentary confirmed continued access to the AXON quoting platform during the insolvency period, reinforcing that production was executed through a digital portal workflow.[14]
🏦 German risk carriers. Two incumbent German risk carriers — SV SparkassenVersicherung Gebäudeversicherung AG and Württembergische Versicherung AG — continued to support new business and renewals following the DGC acquisition. Board members of these carriers publicly emphasized the value of Cogitanda's integrated prevention, insurance, and claims management model as a basis for their continued partnership.[15]
🌐 International capacity. Cogitanda partnered with Everest Insurance and IQUW to expand its cyber product offering for clients with revenues up to €250 million in Germany and Austria, with a stated policy limit up to €7.5 million for that expanded segment.[3] The precise legal mechanism governing these relationships — whether a Lloyd's coverholder arrangement or another London market access model — is not publicly documented.
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Financial profile and competitive positioning
📊 Financial opacity. Cogitanda experienced economic distress after 2023 and entered insolvency in late 2024, followed by business transfer and continuation under DGC.[2] Audited financial KPIs including gross written premium, revenue, net income, and loss ratio are not available in public filings.
| Metric | Figure | Context |
|---|---|---|
| Total group employees (prelim insolvency) | ~150 | Secured through insolvency wage pre-financing to end of January 2025[4] |
| Employees transferred (asset deal) | ~70 | Secured with the DGC asset transfer[1] |
| DGC group headcount (post-acquisition) | >100 | Group-wide across Flensburg and Cologne; not Cogitanda standalone[2] |
🏅 Competitive positioning. Within the broader cyber insurance landscape, Cogitanda aligns most closely with the European cyber MGA and services cluster — specialist underwriting design under delegated authority paired with cyber prevention, monitoring, and incident orchestration. US integrated cyber platform peers include At-Bay, Coalition, Corvus Insurance, Cowbell, and Resilience. European challengers with comparable profiles include Stoïk and Eye Security. Additional ecosystem peers span Baobab Insurance, BOXX Insurance, Converge Insurance, Elpha Secure, Emergence Insurance, Evolve MGA, Invision Cyber, Measured Analytics and Insurance, Onda, Pera, SafeInside Insurance, Sync Underwriting, and Dattak.[2][6]
🏰 Competitive moat. Cogitanda's central differentiation claim rests on its integrated prevention, insurance, and incident management offering, supported by operational documents and acquisition communications.[11] Distribution lock-in is indicated by broker onboarding and portal-driven configuration processes.[7] Capacity access and continuity following insolvency, with two major risk carriers explicitly maintaining support post-acquisition, represents a key strategic asset for the reconstituted business.[15]
📚 Market context. Academic and institutional research highlights structural challenges directly relevant to cyber MGA sustainability, including aggregation and systemic cyber risk, uncertainty around exclusions (especially war and attribution clauses), and the need for clearer coverage constructs and risk transfer mechanisms.[16] These themes are especially pertinent given Cogitanda's reliance on external carriers and its emphasis on prevention and crisis management as risk-mitigating levers.
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Risks and outlook
🔗 Capacity dependency. Cogitanda's model is strongly dependent on third-party risk carriers, and post-acquisition continuation explicitly depends on retained and newly arranged carrier support.[1] Any withdrawal or non-renewal of delegated authority by a material capacity provider could directly affect production capability and portfolio continuity.
🌊 Systemic aggregation risk. Cyber risk is structurally prone to accumulation and systemic events that can affect multiple insureds simultaneously, a core constraint on cyber insurability that directly affects carrier appetite and delegated authority terms.[16] This dynamic is amplified for specialist MGAs whose portfolios are concentrated in a single line of business.
⚔️ War exclusion disputes. War and state-sponsored cyber attribution remain a persistent stress point for cyber insurance coverage. The broader market dynamic and the documented presence of war clauses in comparable policy conditions create ongoing due diligence exposure for placement, claims handling, and reputational risk.[9][12]
🔧 Integration risk. An asset deal typically requires re-establishing contracts, delegated authority agreements, systems, and controls under a new group governance model. The integration of security operations with insurer-facing processes suggests execution and compliance risk during the transition ramp-up.[2]
👤 Key-person risk. The founder's death is repeatedly cited as a major destabilizing factor preceding insolvency, indicating historical dependence on key individuals and associated governance continuity risk.[2]
🔭 Strategic outlook. Cogitanda's post-acquisition strategy centers on the combined "360°" proposition of risk prevention and monitoring paired with insurance and crisis management.[5] Product communications signal a push toward digitized underwriting workflows (digital application process and structured cyber risk check) and tiered product architecture, reflecting a modernization trajectory under DGC ownership.[6]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
Timeline
- 2016 — Cogitanda is founded as an early specialized cyber insurance provider in Germany.[2]
- 2019 (July) — Formal policy conditions for Cyber Pro+ (AVB Version 1.0, dated July 26, 2019) are established.[9]
- 2023 — Sudden death of founder Jörg Wälder triggers economic difficulties for the group.[2]
- 2024 — Cogitanda partners with Everest Insurance and IQUW to expand cyber capacity for mid-market clients in Germany and Austria.[3]
- November 2024 — Insolvency filing by the group and appointment of a preliminary insolvency administrator; continuity of customer coverage is asserted.[4]
- March 2025 — Asset deal sale to a DGC AG subsidiary closes; Cogitanda brand is retained and operations continue.[2]
- 2025 onward — Public positioning emphasizes integrated cybersecurity and insurance, with launch of the CYBERPROTECTION product featuring a digital process and risk check.[5]
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
See also
{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}
References
- ↑ 1.0 1.1 1.2 1.3 1.4 1.5 1.6 1.7 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 2.00 2.01 2.02 2.03 2.04 2.05 2.06 2.07 2.08 2.09 2.10 2.11 2.12 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 3.0 3.1 3.2 3.3 3.4 3.5 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 4.0 4.1 4.2 4.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 5.0 5.1 5.2 5.3 5.4 5.5 5.6 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 6.0 6.1 6.2 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 7.0 7.1 7.2 7.3 7.4 7.5 7.6 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 8.0 8.1 8.2 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 9.0 9.1 9.2 9.3 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 10.0 10.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 11.0 11.1 11.2 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 12.0 12.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 15.0 15.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
- ↑ 16.0 16.1 {{#invoke:citation/CS1|citation |CitationClass=web }}
{{#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Reflist with unknown parameter "_VALUE_"|ignoreblank=y| 1 | colwidth | group | liststyle | refs }}