Data Breach Support

Helping you navigate uncertainty

What is a personal data breach?

The term “data breach” may be used in the press to mean several things, however under the GDPR this a security incident that has affected the confidentiality, integrity or availability of personal data, sometimes called the “CIA” of data.

A breach is more than just losing personal data. Examples of a personal data breach include personal data that has:

  • been lost, destroyed or altered

  • disclosed accidentally to a third party

  • accessed by an unauthorised third party

  • sent to the wrong recipient

  • been altered without permission

  • been corrupted so that it can no longer be accessed.

It may have been done accidentally by a member of staff, or deliberately by a third party.

What should I do in the event of a data breach?

The most important thing to do is not to panic. You must first assess whether the breach involved personal data, and if so, take steps immediately to address it. This includes informing your local regulator if you determine that it is a “notifiable breach” within 72 hours from when you first become aware of it.

You may not have all of the information to hand, but to ensure compliance with the GDPR it is important to inform the UK’s Information Commissioner’s Office or local regulator as soon as possible. Under the GDPR it is acceptable to provide information in phases.

How we can help you

Avilius are able to help your organisation at every stage of the process and we will make sure you comply with the 72 reporting deadline so that you can ensure that normal business operations are resumed quickly. For example:

  • determining whether a data breach has occurred

  • liaising with the local regulators to inform them of the data breach

  • working with your communications team on internal and external messaging in respect of the data breach

  • remediation work including reviewing your Technical and Organisational Measures

  • acting as a bridge between your organisation and the regulator(s) to negotiate any fines.

Speak to us today, to find out more.