Q Quark

AI Liability: Covered

The insurance layer
for AI

Standard cyber policies exclude AI use. Quark's all-in-one AI protection cover offers testing, certification and insurance cover for businesses using AI.

Free: Assess your AI workflow Brokers: Get appointed
$1T AI usage market, 2024
978% Rise in AI-related lawsuits since 2021
3 US insurers Restrict cover for AI use

The coverage gap

"Insurers, apparently concerned with AI loss coming within the scope of coverage under existing coverage lines, are looking for ways to limit or exclude coverage via AI-specific exclusions and endorsements."

Geoffrey Fehling and Michael Levine, Partners at Hunton Andrews Kurth; and Evan Bundschuh, President of Commercial Lines at GB&A Insurance

Is your AI ready for scrutiny?

AI systems can fail differently each time in production. With each new wave of AI-frontier releases, we are discovering newer types of drift and workflow breakdowns. Standard policies weren't written for this uncertainty.

What you have What you need

EXISTING

Cyber & E&O Policies

These policies were built for data breaches and human errors. Carriers are now adding explicit exclusions for AI-generated data breaches, autonomous decisions, and model failures.

QUARK

Quark

AI Liability Coverage

Underwritten specifically for AI risk, for both AI providers (startups and labs) and deployers (businesses). Covers lost revenue, business interruption and legal damages, alongside running a 24×7 AI risk-management platform.

EXISTING

General Liability

Covers physical property and bodily injury. The Verisk/ISO CGL AI exclusion, effective January 2026, removes AI-related incidents from this policy entirely.

EXISTING

D&O / Fiduciary

Covers directors and officers from decisions they made. Berkley's "absolute" AI exclusion now strips this coverage when AI is involved in the decision chain.

Regulation is keeping an eye on AI risk.

Three major legal frameworks have come into force in the last 12 months, each placing direct liability on AI deployers.

LAW 03
Colorado AI Act Effective June 2026: AI usage in high-risk areas such as employment, housing, healthcare, insurance, and consumer lending requires additional procedures
Deployers & developers
LAW 02
California AB 316 Deployers are now directly liable for AI agent actions, including downstream third-party integrations
California deployments
LAW 01
EU AI Act In force August 2025. Fines up to €35M or 7% of global annual revenue for non-compliance
All EU deployments In force now
CARRIERS
Active AI Exclusions Berkley, Philadelphia, Hamilton, and Verisk/ISO have all updated their E&O and CGL policies with AI exclusions
All markets

Who we cover

One platform. Every side
of the AI risk equation.

Whether you build AI or deploy it, the liability exposure is real and growing. Quark covers both sides of the table: purpose-built policy language, backed by global carriers.

AI Vendors
Contractual Liabilities
The Exposure

AI vendors increasingly commit to performance guarantees to close enterprise deals. Those warranties create direct balance-sheet exposure; Quark's coverage transfers that contractual liability to an insurer best placed to underwrite it.

Vendors & Deployers
AI Liabilities
The Exposure

Deploying or distributing AI introduces liabilities that didn't exist before. The most common claims for AI deployers:

  • Discrimination and bias decisions
  • IP infringement
  • Hallucination-driven errors
  • Unauthorized actions
Corporations using AI
Financial Losses
The Exposure

Automating critical business processes with AI unlocks real efficiency, but a single failure can cause business interruption, misinformed decisions, and downstream legal liability. Quark covers financial losses from AI use.

Risk monitoring

Best-in-class assessment.
Coverage that reflects it.

Accurate underwriting requires accurate risk data. Before coverage is bound, we run regulatory-grade tests across your AI workflows; then we repeat them every 24 hours. The result: continuous OWASP, NIST, MITRE, and MAS evidence that keeps your policy current, and your insurer informed, as your deployment evolves.

Aligned with the frameworks your auditors trust
OWASPLLM TOP 10
NISTAI RMF
MITREATLAS
MASMINDFORGE
AI VerifyAIVTF · IMDA
AI RISK READINESS SCORE
87/ 100

Composite of 8 risk dimensions, framework-mapped, board-ready.

The numbers behind
every monitoring run.

Every scan, finding, and signal is captured, scored, and rolled up into a single risk view your underwriter, auditor, and procurement team can act on.

27 Attack techniques Prompt injection · jailbreaks · exfiltration
44 Vulnerability definitions PII · hallucination · toxicity · policy
32 Pages of evidence OWASP · NIST · MITRE · MAS · AIVTF
Faster than manual Continuous, not point-in-time
Assess Risk Probe your AI for 27 attack techniques and score every vulnerability before it becomes a claim.

Continuous vulnerability scanning and risk scoring across your deployed AI. We surface threats before they reach production, or reach your customers.

  • 27 attack techniques across prompt injection, jailbreaks, and data exfiltration
  • 44 vulnerability definitions covering PII leakage, hallucination, toxic outputs, and policy violations
  • Risk score (0–100), severity-weighted and mapped to your deployment inventory
PROBE & SCORE
Improve SecurityHarden your guardrails against real adversarial inputs and maintain a tamper-proof remediation record.

Validate guardrails against real adversarial inputs. Prove they hold; harden them where they don't.

  • Continuous benchmark suites that re-run on every model update
  • Regression detection before findings reach production
  • Immutable audit trail of every test and every remediation
VALIDATE GUARDRAILS
Certify & ReportGenerate framework-aligned evidence your auditors, procurement team, and insurer can act on immediately.

Board-level go/no-go decisions with framework-aligned evidence: ready for procurement, regulators, and your insurer.

  • Mapped to OWASP LLM Top 10, NIST AI RMF, MITRE ATLAS, MAS MindForge, AI Verify
  • 32-page regulatory-grade report generated in minutes, not weeks
  • Tamper-evident signature so auditors can verify provenance themselves
SIGN & REPORT

How it works

Covered in days.
Protected continuously.

A structured path from first assessment to bound policy, with a live monitoring loop, meaning your coverage never goes stale.

01
~10 minutes

Submit

Describe your AI deployment: what it does, what data it touches, and what your customers contractually require from you.

02
Automated · same day

Risk Assessment

Our platform runs tests across 8 risk dimensions, scored against OWASP LLM Top 10, NIST AI RMF, MITRE ATLAS, and MAS MindForge.

03
Guided · 1–3 days

Harden & Remediate

We surface gaps and guide you through targeted fixes: guardrails, access controls, human-in-loop checks; then re-test to confirm the improvement.

04
Outcome

Policy + Certificate

A bound AI liability policy and a signed, framework-mapped certificate: ready for your enterprise buyer's procurement and legal review.

Every 24 hours

Live Monitoring

Scans run daily. If something changes materially, we alert you and initiate remedial coverage, keeping your risk profile current as your AI evolves.

Who we work with

Built for companies where
AI is the product.

AI Agents & Automation

Companies building autonomous agents that take actions (scheduling, purchasing, customer service) on behalf of users or enterprises.

Agentic workflowsRPACopilots
LLM & Foundation Model Vendors

Labs and API providers whose models are embedded in enterprise products, carrying contractual performance warranties and output liability.

Model APIsFine-tuningRAG platforms
AI in Regulated Industries

Businesses deploying AI in healthcare, finance, legal, or HR, where decisions carry direct regulatory exposure under the EU AI Act, Colorado AI Act, and California AB 316.

HealthcareFintechLegal tech

FAQ

Common questions,
straight answers.

Cyber policies were written for human-driven data breaches and network intrusions. Major carriers, including Berkley, Philadelphia, Hamilton, and Verisk/ISO, have introduced explicit AI exclusions into their E&O and CGL policies. That means hallucinations, autonomous agent errors, and model-driven decisions are no longer covered under your existing policy. Quark's coverage is purpose-built for these exposures.
Quark's policy covers three primary exposure categories: professional liability for AI outputs (E&O), covering hallucinations, bad recommendations, and automation failures; IP and media risk, covering copyright claims, defamation, and content misuse from AI-generated output; and agentic and workflow liability, covering autonomous actions in approvals, financial transactions, or business decisions. Policy language is written for AI risk, not retrofitted from cyber.
From intake to a first underwriting view typically takes 72 hours. Risk assessment runs the same day you submit. If remediation is needed, the guided hardening phase runs one to three days. Most companies receive a bound policy and a signed compliance certificate within a week of submitting.
Yes, continuous risk monitoring is included with every Quark policy. Our platform scans your AI deployment daily across 27 attack techniques and 44 vulnerability definitions, scoring against OWASP LLM Top 10, NIST AI RMF, MITRE ATLAS, and MAS MindForge. If something changes materially, we alert you and initiate remedial coverage so your policy stays current as your AI evolves.
Yes. Quark covers both sides of the AI risk equation: AI vendors (startups and labs) who carry contractual performance warranties, and businesses that deploy AI in their products or operations and face liability for discrimination, bias, hallucination-driven errors, or unauthorized autonomous actions. If you use AI in a way that touches customers or critical decisions, you have exposure that needs specific coverage.
Quark's monitoring platform generates evidence aligned with the EU AI Act (in force August 2025), California AB 316, and the Colorado AI Act (effective June 2026), as well as OWASP LLM Top 10, NIST AI RMF, MITRE ATLAS, MAS MindForge, and AI Verify. The 32-page regulatory-grade report is ready for procurement teams, auditors, and insurers.
Quark is a Managing General Agent (MGA). We structure and place the risk; we don't carry it on our own balance sheet. Coverage is placed through licensed fronting carriers and Lloyd's reinsurance capacity. That means you get purpose-built policy language and faster placement, backed by established carrier infrastructure.
Yes. Coverage limits and structures are discussed during the underwriting review. Quark works with carriers and Lloyd's capacity to place policies at limits that match your enterprise customers' procurement requirements. Enter your target limit and procurement deadline in the intake form and we will come back with a first structuring view within 72 hours.

The market

AI risk is real.
The coverage market is not.

Carriers are excluding faster than new products are launching. Quark exists to close that gap: purpose-built coverage, real underwriting, and the monitoring layer that makes it sustainable.

Start a coverage review →

Start here

Get a coverage review
in 72 hours.

Tell us about your AI product and your customers. We'll come back with a first underwriting view: what's coverable, at what limits, and what the path to a bound policy looks like.

  • No coverage is bound from this page
  • First underwriting view within 72 hours
  • Placed through licensed carrier and reinsurance partners
  • No broker fees on intake review
Please enter your company name.
Please enter a valid email address.
Please enter a valid phone number.
Select country
Please select your country.

I am *

Please select one.
Select industries
Please select at least one industry.

Describe all the ways AI is used in your product or business: customer service, decisions, content, workflows, anything that touches customers or data.

Please describe what your AI does.
Please describe your customers.

Annual revenue (USD) *

Please select your revenue range.

No coverage is bound from this page. We'll follow up within 72 hours.