GDPR Data Breach Incident

GDPR Incident

Details

IDGDPR Data Breach
Groupincident
Version-1
From Version6.0.0

Layout Structure

Incident Info 9 sections

Case Details

Field IDPosition
type Col 0-2, Height: 24
severity Col 0-2, Height: 24
owner Col 0-2, Height: 24
dbotsource Col 0-2, Height: 24
sourcebrand Col 0-2, Height: 24
sourceinstance Col 0-2, Height: 24
playbookid Col 0-2, Height: 24

Notes

Work Plan

Linked Incidents

Child Incidents

Team Members

Timeline Information

Field IDPosition
occurred Col 0-1, Height: 24
dbotcreated Col 1-2, Height: 24
dbotmodified Col 0-1, Height: 24
dbotclosed Col 1-2, Height: 24
dbotduedate Col 0-2, Height: 24

Closing Information

Field IDPosition
dbotclosed Col 0-2, Height: 24
closereason Col 0-2, Height: 24
closenotes Col 0-2, Height: 24

Evidence

Data Breach Information 4 sections

Data Breach Information

The GDPR defines a "personal data breach" in Article 4(12) as: "A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed." Art. 4 - https://gdpr-info.eu/art-4-gdpr/

Field IDPosition
sectorofaffectedparty Col 0-2, Height: 24
whereisdatahosted Col 2-4, Height: 24
sizenumberofemployees Col 0-2, Height: 24
maliciouscauseifthecauseisamaliciousattack Col 2-4, Height: 24
sizeturnover Col 0-2, Height: 24
likelyimpact Col 2-4, Height: 24
countrywherebusinesshasitsmainestablishment Col 0-2, Height: 24
possiblecauseofthebreach Col 2-4, Height: 24
countrywherethebreachtookplace Col 0-2, Height: 24
dataencryptionstatus Col 2-4, Height: 24
datetimeofthebreach Col 0-2, Height: 24
affecteddata Col 2-4, Height: 24
occurred Col 0-2, Height: 24
isthedatasubjecttodpia Col 2-4, Height: 24
approximatenumberofaffecteddatasubjects Col 0-2, Height: 24
companyhasinsuranceforthebreach Col 2-4, Height: 24
measurestomitigate Col 0-4, Height: 24

Details of Company

Details of the breached company

Field IDPosition
companyname Col 0-2, Height: 24
companyaddress Col 0-2, Height: 24
companypostalcode Col 0-2, Height: 24
companycity Col 0-2, Height: 24
companycountry Col 0-2, Height: 24

Contact person (to obtain complementary information)

A controller or processor may have a Data Protection Officer (DPO), either as required by Article 37, or voluntarily as a matter of good practice. Art. 37 - https://gdpr-info.eu/art-37-gdpr/

Field IDPosition
contactname Col 0-2, Height: 24
contactaddress Col 0-2, Height: 24
postalcode Col 0-2, Height: 24
city Col 0-2, Height: 24
country Col 0-2, Height: 24
dpoemailaddress Col 0-2, Height: 24
telephoneno Col 0-2, Height: 24

Affected Individuals Contact Information

Affected individuals contact information. Used in case the breach is causing high risk to individuals.

Field IDPosition
affectedindividualscontactinformation Col 0-4, Height: 110
War Room 0 sections

No sections defined.

Work Plan 0 sections

No sections defined.

Evidence Board 0 sections

No sections defined.

Related Incidents 0 sections

No sections defined.

Canvas 0 sections

No sections defined.