CrowdStrike Falcon® Complete:
Breach Prevention Warranty FAQ
CrowdStrike is offering a warranty to Falcon Complete customers that will cover up to $1 million in breach response expenses if there is a security incident within the environment protected by CrowdStrike Falcon® Complete.
The coverage is included with the purchase of Falcon Complete at no additional charge to the customer.
CrowdStrike Falcon® Complete, is a turnkey solution, combining the Falcon Endpoint Protection (EPP) technology with the skills and experience of the Falcon Complete Team. The team takes over the administration and monitoring of the Falcon platform and responds to threats 24 hours a day.
A customer’s coverage tier for each annual warranty period corresponds to the number of licenses on its Falcon Complete subscription for that period. The tier determines the total amount of warranty protection based on the table below:
Licensed Endpoint Quantity | Warranty Cap* |
Up to 4,999 | $100,000 |
5,000-10,000 | $500,000 |
10,001 and above | $1,000,000 |
*Subject to sublimit of $100,000 for cyber extortion payments
To be eligible for warranty coverage, the security incident must constitute unauthorized access by a third party to the operating system of an endpoint protected by Falcon Complete that results in the malicious exfiltration, destruction and/or irreversible encryption of customer data that customer reasonably believes has value in excess of $5,000.
The warranty covers certain breach response fees and expenses incurred by the customer, including legal consultation, forensic services, notification expenses, identity theft and credit monitoring, public relations and cyber extortion payments.
The warranty is included with the purchase of a Falcon Complete subscription. There is no additional charge to the customer. The warranty is purely a value-added benefit for the customer.
The customer must subscribe to Falcon Complete and agree to the warranty terms and conditions.
The warranty is offered for 12 months from the date the customer signs the warranty agreement. Customer must also maintain an active Falcon Complete subscription.
Only reseller partners. Since the CrowdStrike Breach Prevention Warranty is included as part of the standard Falcon Complete bundle, reseller partners offer the warranty to their customers by default, in available regions. Other CrowdStrike partners are ineligible and must provide their own warranties, should they so choose, since they provide additional third-party products and services outside of the CrowdStrike ecosystem.
No. The warranty agreement is tailored to CrowdStrike’s insurance coverage and is therefore only offered on a “take it or leave it” basis.
No. The warranty only applies to Falcon Complete.
Any new Falcon Complete customer is eligible for the warranty; however, pre-existing security incidents are not covered.
No, the security incident must first occur and be discovered during a warranty period.
Yes, the protected endpoints must be supported Windows, MacOS, or Linux operating systems configured with CrowdStrike Falcon Complete’s recommended Measured Security Posture (or higher) at all times. The customer will initially receive read-only access to the Falcon Platform.
Yes, security incidents resulting from a customer allowlisting an endpoint, altering configurations to fall below the measured security posture, failing to follow CrowdStrike’s prevention or remediation instructions, and altering the Falcon Complete product are excluded. Other exclusions include customer’s fraudulent, criminal or malicious acts, violations of the law and other physical and force majeure events.
The Falcon Complete Breach Prevention Warranty is currently not available in Italy or Japan and may be restricted in other regions. Customers should contact their CrowdStrike representative for full details on eligibility.
