| Commentary

(a) Notifying the ICO

| Commentary

(5)     Personal data breaches

A personal data breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data (UK GDPR art 4(12)). This includes accidental and deliberate breaches. Personal data breaches can, if timely preventative measures are not taken, expose data subjects to significant physical, material or non-material harm. For example, their personal data may be used to subject them to financial loss, identity theft or fraud, discrimination, damage to their reputation, loss of confidentiality or other significant social or economic disadvantage. Employers must document all personal data

To continue reading
Analyse the law and clarify obscure passages all within a practical context.