What the Winery Risk Snapshot checks

This free winery cybersecurity self-assessment scores ten areas that most often lead to incidents at small and mid-size wineries — the same areas a cyber-insurance questionnaire or a wholesale buyer's security review will probe:

• Identity & access control — multi-factor authentication across email, wine club, and DTC systems.
• Backups you can actually recover — whether backups are test-restored, not just marked complete.
• Seasonal-staff offboarding — deactivating harvest and event accounts the day they leave.
• Network segmentation — keeping the tasting room and guest Wi-Fi off the POS and back-office network.
• Wire-fraud / BEC controls — verifying supplier payment-change requests before paying.
• Wine club data protection — access control and export limits on customer and DTC data.
• 24×7 detection & response — monitoring with someone who acts on alerts, not just forwards them.
• Patch enforcement — on POS terminals and production and back-office machines.
• Insurance & buyer readiness — being able to answer a security questionnaire with confidence.
• CCPA readiness — a documented security program for the California consumer data you hold.

The snapshot is free, takes about two minutes, and requires no email. It's built for family-run and boutique Napa and North Bay wineries with direct-to-consumer operations — tasting rooms, wine clubs, and ecommerce — that want a fast read on where they stand before an incident, an insurance renewal, or a buyer's due-diligence review forces the question. For a deeper look, the winery security program turns the snapshot's gaps into an operated plan.