GDPR Data breach
What is the GDPR Data Breach Policy?
Nowadays a GDPR data breach policy is crucial for your company. Under the GDPR, we have the biggest fines ever put upon businesses. Up to 20 million euros or 4% of global annual turnover (whichever is higher).
DOWNLOAD OUR DATA BREACH POLICY TEMPLATE
“A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data”. This is how the UK ICO (Information Commissioner’s Office) defines a personal data breach.
To be able to comply with the GDPR obligations, you must ensure that you are aware of a data breach as soon as it occurs. It is important to have a data breach policy for taking appropriate action immediately.
In the policy, you can record the steps in case of a data breach. You can add what information must be collected/recorded and/ or reported, by whom, and within what time frame. Furthermore, you need to be familiar with a report form which you should send to the authorities in case of a data breach. In addition, you are supposed to record the information about the data breach in your data breach register.