{"id":3090,"date":"2018-02-01T16:40:18","date_gmt":"2018-02-01T16:40:18","guid":{"rendered":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk?p=3090"},"modified":"2018-02-01T16:40:18","modified_gmt":"2018-02-01T16:40:18","slug":"report-data-breach","status":"publish","type":"post","link":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/church\/report-data-breach\/","title":{"rendered":"When to report a data breach"},"content":{"rendered":"<p>\t\t\t\tPreparing for the General Data Protection Regulation (GDPR), which rolls out a tighter set of rules, can ensure businesses stay compliant with the new requirements.<\/p>\n<p>The Information Commissioner\u2019s Office (ICO) recommends a number of steps to get everything in place \u2013 perhaps the most important being an awareness of what the new rules mean and your responsibilities as someone who holds other people\u2019s data in staying within them.<\/p>\n<p>It\u2019s easy for businesses to be on edge without this clarity, and to discourage a tidal wave of issue reporting from nervous enterprises afraid of being put through the wringer, the ICO offers guidance on when a breach should be reported, and when it\u2019s acceptable to handle the matter internally.<\/p>\n<p><strong>\u00a0<\/strong><\/p>\n<p><strong>When to report a breach<br \/>\n<\/strong>While certain organisations are already required to report certain types of breaches, other entities only have a duty to inform the ICO if it\u2019s going to have a negative impact on those who are linked to the data.<\/p>\n<p>The nature of the breach, as well as the size, determines how serious it is \u2013 and all major issues should be reported.<\/p>\n<p>For example, when login details of thousands held by a online store are set loose and vulnerable to hackers, this could cause the customer financial loss and contravene their confidentiality.<\/p>\n<p>Another example might include private emails being made public, damaging the reputation of the sender, recipient, or others implemented in the conversation.<\/p>\n<p>Not only would you need to inform the ICO, but you will also have a duty to notify those who\u2019ve been affected.<\/p>\n<p>The ICO should be contacted with any notable breaches within 72 hours of becoming aware of it if the business involved is to lessen the chances of a heavy fine, although carelessness around data will likely result in a financial penalty.<\/p>\n<p>&nbsp;<\/p>\n<p>Under the new GDPR, failing to notify the ICO of a significant breach can incur a fine of up to 10 million Euros or 2 per cent of your global turnover, on top of the fine for the breach itself.<\/p>\n<p><strong>\u00a0<\/strong><\/p>\n<p><strong>When not to report a breach<\/strong><br \/>\nNot all data is sensitive or is going to cause a problem if it gets out into the open. Examples include an internal staff contact list, or a marketing list of names to be targeted for a product, providing the product isn\u2019t especially sensitive.<\/p>\n<p><strong>\u00a0<\/strong><\/p>\n<p>For more information on how regulatory fines fit into your commercial insurance package, get in touch with Edwards Insurance Brokers.\t\t<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Preparing for the General Data Protection Regulation (GDPR), which rolls out a tighter set of rules, can ensure businesses stay compliant with the new requirements. The Information Commissioner\u2019s Office (ICO) recommends a number of steps to get everything in place \u2013 perhaps the most important being an awareness of what the new rules mean and [&hellip;]<\/p>\n","protected":false},"author":7,"featured_media":3086,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[186,187,189,190],"tags":[291,111,377,378,379,380,123],"acf":{"related_articles":null},"_links":{"self":[{"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/posts\/3090"}],"collection":[{"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/comments?post=3090"}],"version-history":[{"count":0,"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/posts\/3090\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/media\/3086"}],"wp:attachment":[{"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/media?parent=3090"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/categories?post=3090"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.networkportfolio.co.uk\/edwardsinsurance.co.uk\/wp-json\/wp\/v2\/tags?post=3090"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}