GDPR data breach report template
- .docx (0.03 MB)
How do you respond to a personal data breach?
It's important to be prepared for a potential data breach. It doesn't matter what kind of high-level security measures you implement, there are lots of workarounds to get the data that people are aiming to get.
It's similar to theft of fixed assets, whatever precautions you take if people really aim to get it, it's much harder to protect yourself. Whatever security measures you have in place, you are never 100% sure that you are safe from a data breach.
Examples of a data breach are:
- an unhappy employee copying a list of customers for their personal use;
- an unauthorized individual that was able to access your email account or network;
- stolen or lost USB drives, hard drives, or mobile devices;
- even an email with personal data to the wrong person;
- bulk emails with personal data to large groups of people;
- somebody was able to access an unlocked safe or storage.
Do I need to report a (personal) data breach?
Data breaches must be reported if they “pose a risk to the rights and freedoms of natural living persons”. This is in general if the persons who are victim of the breach are facing economic or social damage (such as discrimination), reputational damage, or financial losses.
Such a breach could in the end lead to an investigation from the regulator, resulting in potential enforcement action against your organization.
How long do you have to report a data breach according to GDPR?
If you are aware of a notifiable personal data breach, you have 72 hours to report it to the relevant supervisory authorities.
This is applicable when an organization suspects that there may have been a loss of, unauthorized access to, or unauthorized disclosure of personal information.
Therefore, being prepared is essential. We provide you a GDPR Data Breach Template that you can use if such an event of breach occurs to your organization.
If you are dealing with a data breach, firstly make sure to find out when the breach happened and who is involved. Stay calm and take the time to investigate the issue. If you are prepared, you have a guideline on how to respond, and what to do before you continue the daily business operations. Notify your customers and follow your applicable reporting laws. Call in your security and forensic experts to identify and fix the problem.
Download this GDPR Data Breach Report now. We hope you will not need it.
The Content Is For informational purposes only, you should Not construe any such information Or other material As legal, tax, investment, financial, Or other advice. Nothing contained On our Site constitutes a solicitation, recommendation, endorsement, Or offer by Bizzlibrary Or any third party service provider To buy Or sell any securities Or other financial instruments In this Or In In any other jurisdiction In which such solicitation Or offer would be unlawful under the securities laws Of such jurisdiction.
Rebecca Davies - GBR
Many many thanks.
Is your organisation GDPR proof? Demonstrate your efforts in order to become compliant with the GDPR with this set of mandatory compliance document templates.
Learn More About GDPR Documents