Data Breach Erodes Brand Value: Study

Infosys and Interbrand reveal the potential risk in brand value of a data breach to the world’s 100 most valuable brands amounting to as much as $223b, according to a joint cyber security and brand value impact report. The report called ‘Invisible Tech. Real Impact,’ examines the long term impact of data breaches on value of the world’s top brands across sectors.

To quantify this risk, Infosys and Interbrand identified the brand factors most impacted when a company suffers a data breach presence, affinity and trust, and simulated the resulting brand value at risk in the event of a breach, using Interbrand’s proprietary brand valuation methodology. Infosys and Interbrand found that industries such as Technology, Financial services and Automotive might suffer a higher overall brand value at risk from data breaches, whereas luxury brands and consumer goods face greater value at risk as a percentage of their net income.

Specifically, the report quantified the brand value risk different industries face because of a data breach, including:
Technology – Up to $29b brand value risk (up to 53 percent of 2020 net income)
Financial Services – Up to $2.6b brand value risk (up to 52 percent of 2020 net income)
Automotive – Up to $4.2b brand value risk (up to 77 percent of 2020 net income)
Consumer Goods – Up to $5b brand value risk (up to 114 percent of 2020 net income)
Luxury – Up to $2.4b brand value risk (up to 115 percent of 2020 net income)

“Cyber security for long was seen as a cost of doing business. However, in this digital age, where a company’s reputation is based on its ability to protect customer data and establish digital trust, cyber security is becoming a business differentiator. Through this report, we bring a novel approach to quantifying the impact of a data breach to the brand value to help businesses understand and evaluate if the cyber security investments they are making are proportionate to the risk they face. It also reinforces the need for CISOs to engage with the board and build a robust governance ecosystem while employing a ‘secure by design’ approach to safeguard their brand value and reputation,” stated Vishal Salvi, Chief Information Security Officer & Head Cyber Security Practice, Infosys.

For the study, Infosys partnered with Interbrand to simulate the value at risk for a brand in the event of a data breach. Interbrand’s global team of valuation experts estimated the impact of a breach on a brand strength with scores from Best Global Brand (BGB) 2020 as a benchmark. The simulation used these ‘post breach’ brand strength scores to estimate the ‘Value at Risk’ due to a breach, on the Best Global Brands. CMOs, CISOs and other decision-makers can leverage the methodology as a template to help them understand similar risks they might face to their brand value and calculate the right level of cyber security investment for them.

Ameya Kapnadak, Chief Growth Officer (India), Interbrand noted, “There’s a fundamental shift in how brands engage with their customers. As the lines between the physical and virtual worlds increasingly blur and brands rely more and more on the digital world to create unique experiences for their customers, data breaches have the potential to dent the very core of the brand’s relationship with its customers. These shifts underscore the need to re-evaluate ‘hygiene’ aspects of customer experience, like cyber security.”