We do not have an insurance for our business, but what we do have is a team, which works in the field of large projects.
Implementing a hot/cold wallet as a secondary (so to seem) but actually primary security measure means, that if the site would be somehow hacked, maximum we would lose (depending on the how much traffic there is per site) approximately 4k (that is when we would be grown, the dynamic size of hot wallet is allocated depending on needs). And that we can cover quite easy multiple times.
As per cold wallet, that place is not easily accessed. It is in dmz zone, with firewalls shut close, dmz opening and firewalls one port opening only upon need of transfer.