/
GDPR procedure: Data Breach Response and Notification Procedure

GDPR procedure: Data Breach Response and Notification Procedure

Do you suspect or have evidence that a data breach has occured? Notify the Data Privacy Commission (DPC) through this form as soon as possible!

In case we suffer a data breach, we will enact the following procedure, and you will be notified within a week of the result of the assessment.

Measures that will be followed:

  1. Lockdown of service: possible downtime for the web app(s).

  2. Assessment of how the breach happened by analysis on the service and/or servers.

    1. We will detail whether the breach happened as result of an attack, bugs in the code or through user error.

  3. Assessment of which private data was involved in the incident.

  4. Assessment of the remediation.

  5. Alerting of the end users, within a week, about the incident (point 3) and remediation (point 4).

  6. Write-up in the data breach register and the alerting of the authorities if necessary.