Johnson Hana

This Precedent data breach panic sheet gives tips for an Irish organisation on what to do and what not to do in the immediate aftermath (first 24 hours) of a personal data security breach. A personal data breach may arise from a cybersecurity breach or other type of incident. This data breach panic sheet takes into account data breach notification requirements in the EU General Data Protection Regulation (EU GDPR) and relevant guidance from the Data Protection Commission (DPC).

This Precedent Personal data breach plan can be used by Irish organisations to inform their staff and managers of the actions to take on discovering a personal data breach (including a cybersecurity breach). It reflects reporting requirements in the EU General Data Protection Regulation (EU GDPR) and takes into account relevant guidance from the Data Protection Commission (DPO). It incorporates a process for dealing with actual or suspected personal data breaches. A personal data breach plan may also be known as a data breach policy. This Precedent can also be used for cybersecurity breaches that involve the loss of, damage to or unauthorised access to personal data.