May of 2018 saw the introduction of the highly anticipated General Data Regulation Protection, otherwise known as GDPR. Under the GDPR there are a set of rules and regulations that should be followed in the wake of any personal data breach that occurs.
Personal data breaches refer to a breach of security that leads to the ‘accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data. This includes breaches that are the result of both accidental and deliberate causes’, according to the ICO.
If your business experiences such a breach, you must notify the ICO within 72 hours of it being identified. This infographic gives you a 3 day timeline of the activites that you should undertake in the wake of such a breach to ensure that you do not get lumped with massive fines by the ICO.