This document analyses the current policy context and best practices to draw cybersecurity recommendations on companies’ intangible assets and costs, in case of data breaches, in the health and Intellectual Property (IP)-intensive industries.