GDPR Data Breach Incident
GDPR Incident
Details
| ID | GDPR Data Breach |
|---|---|
| Group | incident |
| Version | -1 |
| From Version | 6.0.0 |
Layout Structure
Incident Info 9 sections
Case Details
| Field ID | Position |
|---|---|
| type | Col 0-2, Height: 24 |
| severity | Col 0-2, Height: 24 |
| owner | Col 0-2, Height: 24 |
| dbotsource | Col 0-2, Height: 24 |
| sourcebrand | Col 0-2, Height: 24 |
| sourceinstance | Col 0-2, Height: 24 |
| playbookid | Col 0-2, Height: 24 |
Notes
Work Plan
Linked Incidents
Child Incidents
Team Members
Timeline Information
| Field ID | Position |
|---|---|
| occurred | Col 0-1, Height: 24 |
| dbotcreated | Col 1-2, Height: 24 |
| dbotmodified | Col 0-1, Height: 24 |
| dbotclosed | Col 1-2, Height: 24 |
| dbotduedate | Col 0-2, Height: 24 |
Closing Information
| Field ID | Position |
|---|---|
| dbotclosed | Col 0-2, Height: 24 |
| closereason | Col 0-2, Height: 24 |
| closenotes | Col 0-2, Height: 24 |
Evidence
Data Breach Information 4 sections
Data Breach Information
The GDPR defines a "personal data breach" in Article 4(12) as: "A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed." Art. 4 - https://gdpr-info.eu/art-4-gdpr/
| Field ID | Position |
|---|---|
| sectorofaffectedparty | Col 0-2, Height: 24 |
| whereisdatahosted | Col 2-4, Height: 24 |
| sizenumberofemployees | Col 0-2, Height: 24 |
| maliciouscauseifthecauseisamaliciousattack | Col 2-4, Height: 24 |
| sizeturnover | Col 0-2, Height: 24 |
| likelyimpact | Col 2-4, Height: 24 |
| countrywherebusinesshasitsmainestablishment | Col 0-2, Height: 24 |
| possiblecauseofthebreach | Col 2-4, Height: 24 |
| countrywherethebreachtookplace | Col 0-2, Height: 24 |
| dataencryptionstatus | Col 2-4, Height: 24 |
| datetimeofthebreach | Col 0-2, Height: 24 |
| affecteddata | Col 2-4, Height: 24 |
| occurred | Col 0-2, Height: 24 |
| isthedatasubjecttodpia | Col 2-4, Height: 24 |
| approximatenumberofaffecteddatasubjects | Col 0-2, Height: 24 |
| companyhasinsuranceforthebreach | Col 2-4, Height: 24 |
| measurestomitigate | Col 0-4, Height: 24 |
Details of Company
Details of the breached company
| Field ID | Position |
|---|---|
| companyname | Col 0-2, Height: 24 |
| companyaddress | Col 0-2, Height: 24 |
| companypostalcode | Col 0-2, Height: 24 |
| companycity | Col 0-2, Height: 24 |
| companycountry | Col 0-2, Height: 24 |
Contact person (to obtain complementary information)
A controller or processor may have a Data Protection Officer (DPO), either as required by Article 37, or voluntarily as a matter of good practice. Art. 37 - https://gdpr-info.eu/art-37-gdpr/
| Field ID | Position |
|---|---|
| contactname | Col 0-2, Height: 24 |
| contactaddress | Col 0-2, Height: 24 |
| postalcode | Col 0-2, Height: 24 |
| city | Col 0-2, Height: 24 |
| country | Col 0-2, Height: 24 |
| dpoemailaddress | Col 0-2, Height: 24 |
| telephoneno | Col 0-2, Height: 24 |
Affected Individuals Contact Information
Affected individuals contact information. Used in case the breach is causing high risk to individuals.
| Field ID | Position |
|---|---|
| affectedindividualscontactinformation | Col 0-4, Height: 110 |
War Room 0 sections
No sections defined.
Work Plan 0 sections
No sections defined.
Evidence Board 0 sections
No sections defined.
Related Incidents 0 sections
No sections defined.
Canvas 0 sections
No sections defined.