BOXX Insurance

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Corporate and regulatory profile

Identity, domicile, and operating status

🏢 Corporate identity. BOXX Insurance Inc. is a Toronto-headquartered cyber insurtech founded in 2018.^[1][2][3]

🔑 Zurich acquisition. BOXX is no longer independent. Zurich Insurance Group announced the successful acquisition of the company on 3 July 2025, positioning BOXX to provide retail and SME cyber insurance and services globally.^[1] BOXX stated it would continue to operate as a standalone entity post-transaction; the acquisition consideration was not disclosed.^[4]

Business model classification and regulatory posture

📋 MGA model. BOXX describes itself as an insurtech and managing general agent (MGA), explicitly stating that it is a licensed MGA and Lloyd's coverholder operating under a delegated authority model.^[5] Public materials emphasize the MGA/coverholder framework using third-party insurer capacity rather than a licensed carrier balance sheet; no owned-paper carrier status was disclosed in the reviewed sources.^[5]

U.S. licensing identifiers

🇺🇸 U.S. producer licensing. The U.S. entity operates as BOXX Insurance LLC, publishing a National Producer Number (NPN) of 20139876 and disclosing state-by-state producer license numbers.^[6] The company's U.S. disclosure is framed as producer licensing; a separate MGA license category was not disclosed in the reviewed materials.

Lloyd's coverholder identification

🏛️ Lloyd's capacity evidence. Policy wordings include endorsements signed on behalf of Certain Lloyd's Underwriters, confirming Lloyd's capacity participation.^[7] Although BOXX publicly asserts Lloyd's coverholder status, a numeric coverholder identifier was not found in the accessible materials reviewed.^[5]

Other regulatory registers

🌍 European regulators. The review scope included evidence of registrations referencing the Financial Conduct Authority, ACPR, and BaFin.^[8][9] No definitive primary-source register entry tied to a BOXX legal entity was identified in the materials retrieved, and specific register numbers remain not disclosed.^[5]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Leadership and governance

Founders

👤 Vishal Kundi. Co-founder and CEO, Kundi publicly states approximately 20 years of experience in global insurance corporates prior to founding BOXX.^[8][2][9] No national-intelligence or military cyber-command employment was identified in the reviewed sources. A corporate partnership exists between BOXX and AXA (see partnerships section), but no sourced evidence of founder employment at AXA was found.^[10] Nationality and educational background are not disclosed.

🧑‍💻 Mike Senechal. Co-founder, Senechal states a career spent entirely in technology, having built a software development company and co-founded a fintech subsequently sold to SoFi.^[9][11] As with Kundi, no intelligence or military cyber background was identified, and no AXA employment tie was sourced. Nationality and educational background are not disclosed.^[9]

Current leadership team and governance signals

👥 Senior roles. BOXX public pages and policy documents identify the following senior personnel (titles as shown in source documents; roles may vary by region and time):

• Jonathan Weekes — President (Canada-facing materials and policy signatory for Tech E&O specimen).^[1][12]
• Philip Baker — Chief Underwriting Officer; policy signatory on the Cyberboxx Business cyber policy specimen.^[5][7]
• Steve Penney — CTO.^[13][12]
• Neal Jardine — Chief Cyber Intelligence and Claims Officer.^[9][12]
• Jack Brooks — Head of Hackbusters and Virtual CISO.^[14][12]

🪑 Board chair. Neil Morrison is listed as Chair of BOXX Insurance Inc. in Aviva plc AGM materials.^[9][15]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Ownership, funding, and capitalization signals

Funding rounds

Funding rounds^[3][2][1]

Round	Date	Amount raised	Lead investor(s)	Notable co-investors	Post-money valuation
Series A	22 September 2021	US$10.0M	Zurich Insurance Group	Cyber Mentor Fund; SixThirty Ventures	Not disclosed
Series B	31 January 2023	US$14.4M	Zurich Insurance Company Ltd	Not disclosed	Not disclosed

Funding narrative and implications

💰 Cumulative capital. BOXX reported that the Series B brought total investor capital raised to US$24.5 million over the prior 16 months, with the round led by Zurich.^[2] Zurich initially described the relationship as a global collaboration emphasizing integrated cybersecurity and insurance solutions for SMEs and consumers.^[16] Valuations were not disclosed across the reviewed press releases and Zurich communications.^[2]

📊 AXA investor flag. No AXA venture arm investment was identified among the disclosed round participants; the BOXX–AXA relationship is evidenced solely as a product/solution partnership.^[10]

🏦 Post-acquisition outlook. Following Zurich's completed acquisition in July 2025, BOXX's capital strategy is expected to be driven by Zurich group priorities rather than standalone venture financing, although no post-close operating model financial disclosures were identified.^[1]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Business model, customer segments, and product architecture

Operating model

⚙️ Delegated authority MGA. BOXX's operating model combines underwriting, distribution enablement, and bundled cyber services under a delegated authority framework. The company states it underwrites, prices, and sells policies and manages renewals and partnerships.^[5] BOXX also discloses an MGA-style economics framing: it retains a fixed percentage (flat fee) from premiums collected to operate the business, while the remainder supports claims and capital costs for its insurance backers.^[5]

Customer segments and boundaries

🎯 Segment focus. BOXX positions itself across SME and consumer/personal cyber, and also distributes cyber solutions through partners.^[3] As of January 2023, the company reported over 250,000 individuals and 10,000 businesses protected.^[2] By the July 2025 acquisition announcement, BOXX stated it had scaled to serve close to one million customers across five continents.^[4] Its product suite spans offerings for businesses, households, and partner/affinity channels.^[14]

📈 Underwriting boundaries. Quantitative underwriting thresholds (revenue bands, maximum limits) are not disclosed; the Cyberboxx Business application collects gross revenue, employee count, and limit selections but does not publish eligibility thresholds.^[17] The Tech E&O application flags certain activities for disclosure (adult content, cannabis, cryptocurrency/blockchain, data aggregation, debt collection, managed IT service provider, payment processing, gambling), consistent with an underwriting posture sensitive to higher-severity digital risk classes.^[11]

Actual versus stated mix

🔍 Directional assessment. The published scale figures (hundreds of thousands of individuals and close to one million customers) are structurally consistent with a material embedded/affinity and consumer component, as SME-only cyber MGAs typically require extensive distribution to reach comparable customer counts at commercial price points.^[2]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Insurance products and cybersecurity services

Core insurance products

📦 Product suite. BOXX markets an all-in-one model across cyber insurance and security services for businesses and households, supplemented by a tech E&O product line.^[14] Key named products evidenced in primary materials include:

• Cyberboxx Business 5.0 — Cyber, Data and Privacy Insurance Policy.^[7]
• Cyberboxx Home — Personal cyber insurance with coverage highlights.^[8]
• Tech E&O by BOXX — E&O, Media, and Cyber Insurance Policy.^[18]
• Cyberboxx Assist — Services layer for business and home.^[19]

Cyberboxx Business 5.0 policy structure and triggers

📑 Claims-made basis. The Cyberboxx Business policy specimen is written on a claims-made and reported basis.^[7] Coverage is modular: it applies only for insuring agreements for which a limit appears in the Declarations, implying that certain modules may be elective or tiered by purchased limits.^[7]

🛡️ First-party coverages. Cyberboxx Business includes, among others: incident response costs (legal/privacy breach, forensics, notification, call center, credit monitoring, identity monitoring, public relations), cyber extortion losses, data recovery costs, bricking costs, business interruption (including contingent BI, system failure BI, and contingent system failure variants), reputation protection, and key person cover.^[7]

⚖️ Third-party coverages. The policy includes information privacy liability, regulatory defense and awards, PCI DSS liability, media liability, and network security liability.^[7]

💳 Financial crime coverages. Multiple crime/fraud insuring agreements are included, covering social engineering and client social engineering loss (subject to purchased limits).^[7]

Notable exclusions and limitations

🚫 War and cyber operation exclusion. Cyberboxx Business includes a war and cyber operation endorsement referencing "Specified States" and defining "Impacted State," signed on behalf of Lloyd's.^[7] Other exclusions evidenced in the specimen include restrictions on intellectual property (manufacturing/import/design/packaging/trade dress context), unlawful biometric data collection, discrimination, and insured-versus-insured constructs.^[7]

Cyberboxx Home coverage profile

🏠 Personal cyber insurance. Cyberboxx Home is positioned as personal cyber insurance plus assistance, explicitly underwritten by The Boiler Inspection and Insurance Company of Canada, described as a Munich Re company.^[8]

Cyberboxx Home policy highlight limits^[8]

Coverage	Limit
Cyber Attack	$25,000
Cyber Fraud	$25,000
Cyber Extortion	$2,500
Cyber Bullying	$25,000
Data Breach	$25,000
Home Title Recovery Expenses	$25,000

🔐 Identity monitoring. The product also includes membership benefits tied to Equifax services providing a credit and identity monitoring framework.^[8]

Tech E&O by BOXX policy architecture

📝 Broad insuring agreements. The Tech E&O wording is framed as an E&O, Media, and Cyber Insurance Policy and includes third-party insuring agreements beyond pure cyber, such as professional E&O, technology E&O, technology products liability, and technology discrimination liability.^[18] First-party cyber modules (incident response, extortion, data recovery, business interruption variants) and financial crime modules including invoice manipulation and social engineering of key personnel are also included.^[18]

🌐 War endorsement. A war and cyber operation endorsement in the Tech E&O specimen includes an attribution framework and an explicit carve-back concept for impacts on systems not physically located in an impacted state, signed on behalf of Certain Lloyd's Underwriters referencing a Unique Market Reference Number.^[18]

Cybersecurity and risk services beyond insurance

🔎 Pre-bind signals. External attack surface and security posture emphasis is evidenced via monitoring references in Business/Assist materials.^[6] Underwriting applications collect control posture data (MFA, backups, patch cadence, EDR) for both cyber and tech E&O placements.^[17]

📡 Continuous in-force services (business). Cyberboxx Business materials describe real-time threat monitoring, dark web credential surveillance, external attack surface monitoring, actionable alerts, and vendor discounts for security tooling categories (EDR, XDR, MFA, cloud backups).^[6]

🚒 Incident response model. Hackbusters is positioned as support that can start before a claim is filed, including continuous scanning and dark web monitoring. The service summary indicates BOXX provides free assurance and guidance up to a three-hour threshold before a client needs to consider making a claim.^[20]

🏡 Consumer in-force services. Cyberboxx Assist for Home references identity monitoring (via breach scans), security assessments, guided assistance, and 24/7 incident response support.^[21]

🧪 Templarbit acquisition. In November 2022, BOXX acquired Templarbit, a Palo Alto-based cyber threat intelligence platform focused on vulnerability identification across digital assets. The acquisition was intended to strengthen proactive cyber risk protection, with the acquired founder joining BOXX Labs.^[13]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Distribution, licensing, and geographic footprint

Distribution architecture

🤝 Broker-led model. BOXX states policies are primarily sold through insurance brokers or partners, with certain business plans enabling customers to use an app for policy management and claims intake.^[5] The company also positions solutions for corporate partners (banking, insurers, retailers/e-commerce, mobile operators/telcos) as part of its partner and affinity strategy.^[14]

Geographic presence and expansion markers

🗺️ Operational footprint. BOXX communications describe operations spanning Canada and the United States, with selective products or collaborations in Europe and other regions.^[18][5] Reported office locations include Toronto, Miami, Zurich, Dubai, and Mumbai.^{[1][9][7][10]}

🇺🇸 U.S. market entry. BOXX announced expansion to the U.S. and the appointment of Hilario Itriago as President of BOXX USA in October 2021.^[22]

🇪🇺 Europe execution. The AXA partnership launched initially in Spain (cyber risk mitigation solution for small businesses) in January 2024.^[10] BOXX also announced a personal cyber product partnership with Zurich in Switzerland in May 2024.^[23]

Licensing and authorization approach

📜 Multi-channel licensing. BOXX's approach combines U.S. producer licensing at the entity level (self-disclosed state licensing list), Lloyd's capacity access via coverholder arrangements evidenced by policy endorsements signed on behalf of Lloyd's underwriters, and local admitted carrier underwriting for at least certain Canadian personal cyber cover via the Boiler Inspection and Insurance Company of Canada for Cyberboxx Home.^[7][8]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Capacity providers, partnerships, and AXA relationship

Capacity providers evidenced in primary materials

🏗️ Lloyd's capacity. Both Cyberboxx Business and Tech E&O specimens contain Lloyd's-signed endorsements, demonstrating Lloyd's participation as capacity provider for those product forms.^[7]

🇨🇦 Canadian personal cyber capacity. Cyberboxx Home is explicitly underwritten by the Boiler Inspection and Insurance Company of Canada (Munich Re company).^[8]

💎 Additional backers. BOXX states its insurance partners are rated A- or better and references backers including Munich Re and Hartford Steam Boiler as partners paying claims.^[5] Reinsurance structure details (quota share, excess of loss, performance corridors, loss ratios, binder corridors) are not disclosed in the reviewed public sources.^[2]

Strategic partnerships beyond pure capacity

🤝 Zurich relationship. Zurich's involvement spans investment, collaboration, and eventual acquisition. It announced a global collaboration in September 2021, later led BOXX's Series B, and completed the acquisition in July 2025.^[16]

🧰 Technology enablement. The Templarbit acquisition represents a key internalization of cyber threat intelligence and attack surface capability.^[13]

🆔 Consumer identity ecosystem. Cyberboxx Home embeds identity/credit monitoring membership framing tied to Equifax services.^[8]

🇮🇳 Partner distribution (India). BOXX states it supports Housing.com customers with cyber protection in India.^[5]

AXA relationship deep dive

🔗 Partnership scope. A direct partnership between BOXX and AXA is evidenced in a BOXX press release distributed via Newswire on 30 January 2024.^[10] The partnership centres on a cyber risk mitigation solution for small businesses, with features including:

• External perimeter scanning assessment with a cyber risk score and peer benchmarking
• Alerts for compromised credentials via 24/7 dark web monitoring and expert guidance
• Employee awareness and training with digital risk assessments and training modules
• An "instant response wallet" for guidance following a hack^[10]

🇪🇸 Launch geography. The solution was stated to be launching initially in Spain, with remarks attributed to Alfonso Zayas Satrustegui of AXA Seguros España.^[10]

💼 Investor link to AXA. No AXA venture arm investment was identified among BOXX's disclosed financing participants.^[3]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Competitive positioning, performance signals, and risk factors

Scale and performance signals

📊 Operational metrics. BOXX disclosed the following scale metrics (not financial statements): over 250,000 individuals and 10,000 businesses protected as of January 2023; close to one million customers served as of the July 2025 acquisition announcement; and staff growth from 5 to 36 in the year preceding January 2023.^[2][4] GWP, revenue, loss ratio, and commission rate were not disclosed in the reviewed sources.^[2]

Competitive moat assessment

🛡️ Prevention-led MGA. BOXX's differentiation is best characterised as a prevention-led cyber MGA operating across consumer and SME segments with embedded service delivery and partner distribution.

• Services as a retention and risk-control lever — 24/7 incident response access without immediate claim filing, vCISO guidance, and continuous monitoring (dark web, password leaks, external attack surface).^[6]
• Policy design breadth in SME forms — Cyberboxx Business includes a comparatively expansive set of first-party, third-party, and financial crime modules (including social engineering and escrow theft), positioning the product closer to combined "cyber plus crime" packages.^[7]
• Owned technical assets — The Templarbit acquisition supports an argument for proprietary threat intelligence and attack surface capabilities rather than pure third-party tooling.^[13]
• Strategic parentage — Post-acquisition integration into Zurich's platform strategy (Zurich Global Ventures) is likely to strengthen distribution access and long-term capacity stability relative to standalone MGAs, although the specific operating model is not disclosed.^[1]

Peer benchmarking context

🏁 Competitive landscape. Within the broader cyber MGA ecosystem — which includes At-Bay, Coalition, Corvus Insurance, Cowbell, Resilience, Stoïk, and numerous others — BOXX clusters most closely with "cyber insurance plus security services" platforms. It stands out by maintaining a visible personal/household cyber line alongside SME and partner-distributed offerings, as evidenced by its published customer counts and explicit household product documentation.^[8]

Financial performance and disclosure limitations

Financial performance indicators^[2][1][5]

KPI	Most recent figure	Prior year
Gross Written Premium (GWP)	Not disclosed	Not disclosed
GWP growth rate (YoY)	Not disclosed	Not disclosed
Policy count (in force)	Not disclosed (proxy: 10,000 businesses and 250,000 individuals as of Jan 2023; "close to one million customers" as of Jul 2025)	Not disclosed
Net loss ratio	Not disclosed	Not disclosed
Revenue	Not disclosed	Not disclosed
Net income / net loss	Not disclosed	Not disclosed
MGA commission rate (% of GWP)	Not disclosed (economic framing: "fixed percentage" / flat fee described, rate not given)	Not disclosed
Headcount	36 (reported as of prior year to Jan 2023)	Not disclosed
GWP per employee	Not disclosed	Not disclosed

📉 Disclosure gap. Fewer than three traditional financial KPIs (GWP, revenue, loss ratio) could be populated from the reviewed sources. The review relied on press releases, policy wordings, and product documentation; jurisdictional statutory filings and audited financial statements were not identified for BOXX entities within the accessible sources.^[1]

Risk factors and watchlist

⚠️ Capacity dependency. As a coverholder/MGA reliant on external insurer paper (including Lloyd's underwriters and admitted carriers), BOXX is exposed to capacity repricing, underwriting authority constraints, and performance management tightening.^[5]

💥 Systemic cyber aggregation. The war and cyber operation endorsements in the policy specimens illustrate ongoing market tightening and potential coverage disputes in state-linked cyber events — a structural portfolio risk for cyber MGAs.^[7]

🌏 Regulatory complexity. Products explicitly contemplate privacy breach response, regulatory defense, and cross-jurisdiction considerations, implying compliance complexity as BOXX scales internationally.^[24]

🔄 Acquisition integration risk. Zurich states BOXX is intended to provide retail and SME cyber globally, while BOXX stated it would remain standalone. Execution risk persists around product integration, distribution alignment, and technology platform consolidation, with limited disclosed post-close operational detail.^[1]

🏋️ Services scalability. BOXX's differentiation depends on maintaining service quality (vCISO, Hackbusters response, monitoring) at scale, which is cost-intensive and operationally complex as customer counts approach seven figures.^[20]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

Appendices

Company timeline

• 2018 — BOXX launched.^[3]
• 2020 — Founders discuss building a cyber-focused insurtech and broker-centric digital platform (trade feature).^[9]
• 22 September 2021 — Series A of US$10M announced; investors include Zurich, Cyber Mentor Fund, and SixThirty Ventures.^[3]
• 1 October 2021 — U.S. expansion announcement and appointment of BOXX USA President.^[22]
• 8 November 2022 — Acquisition of Templarbit announced; founder joins BOXX Labs.^[13]
• 31 January 2023 — Series B of US$14.4M led by Zurich; company reports 250,000 individuals and 10,000 businesses protected and headcount growth.^[2]
• 30 January 2024 — Partnership with AXA to launch a cyber risk prevention solution for small businesses, initially in Spain, including perimeter scanning, dark web credential monitoring, training, and an instant response wallet.^[10]
• 17 April 2024 — Cyberboxx Business 5.0 product release announcement.^[25]
• 3 July 2025 — BOXX announces agreement to be acquired by Zurich; Zurich announces successful completion the same day; BOXX states it will operate as a standalone entity post-transaction.^[4]

Glossary

📖 Managing General Agent (MGA). An intermediary with delegated authority from an insurer to perform underwriting functions, often including pricing, binding, and policy administration; may also manage claims depending on authority scope.^[5]

📘 Coverholder. A Lloyd's delegated authority arrangement where a firm is authorised by a Lloyd's managing agent to enter into insurance contracts on behalf of Lloyd's syndicates under a binding authority agreement.^[26]

📙 Binding authority. The contract allowing a coverholder to bind risks on behalf of the capacity provider, subject to agreed underwriting guidelines and controls.^[26]

📕 GWP (Gross Written Premium). Total premium written by an insurer or program before deductions for reinsurance or commissions; for MGAs, public disclosure is often limited absent statutory filings.^[2]

📗 Loss ratio. Claims incurred divided by earned premium; for MGAs, typically tracked by capacity provider and may be subject to performance corridors, but is frequently not publicly disclosed.^[1]

📓 Claims-made and reported. A coverage trigger requiring a claim be first made (and typically reported) during the policy period or any applicable extended reporting period.^[7]

📒 Quota share. A proportional reinsurance structure where a fixed percentage of premiums and losses are ceded to reinsurers; not disclosed for BOXX in the reviewed sources.^[1]

📔 Fronting. Use of a licensed insurer to issue policies in a jurisdiction while transferring most risk via reinsurance; not explicitly disclosed for BOXX, though admitted underwriting is evidenced for Canadian personal cyber via Boiler Inspection and Insurance Company of Canada.^[8]

📚 SME / mid-market (cyber insurance context). Common segment framing for smaller enterprises; BOXX positions offerings for small businesses and technology providers, but explicit revenue thresholds are not disclosed.^[6]

📰 MDR / SOC / EDR / XDR. Cybersecurity operational services and tooling categories; BOXX references vendor discounts for EDR and XDR and positions continuous monitoring and incident response, but does not name specific MDR/SOC tools in the reviewed product sheets.^[6]

{{safesubst:#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Center with unknown parameter "_VALUE_"|ignoreblank=y| 1 | style }}

References

{{#invoke:Check for unknown parameters|check|unknown=|preview=Page using Template:Reflist with unknown parameter "_VALUE_"|ignoreblank=y| 1 | colwidth | group | liststyle | refs }}