72-hour reporting, CERT coordination, and regulatory compliance
GDPR requires breach notification within 72 hours. NIS2 requires early warning in 24 hours. We prepare procedures, reports, and coordinate with CERT and regulators.
Preparation of data breach notifications for DPA and affected individuals, severity assessment, measure documentation, and DPO coordination.
Early warning to CERT about significant incidents, 72-hour detailed notification, and final report within one month.
Incident log standards, report templates, communication plans, and post-incident analysis for continuous improvement.
Crisis team management, coordination with internal IT/security, external advisors, and regulators during and after incidents.
Root cause analysis, lessons learned, improvement recommendations, and corrective measure implementation to reduce future risk.
A security breach leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data. Examples: ransomware, device loss, email sent to wrong person, unauthorized access.
No. GDPR requires notification to the DPA only if the breach is likely to result in a risk to individuals' rights and freedoms. All breaches must be documented internally. NIS2 requires CERT notification only for significant incidents.
GDPR allows phased notification if all information isn't available within 72 hours. It's important to report the incident on time and add additional information later. Delays must be justified and documented.
Typically: DPO/CISO, IT/security lead, legal, communications/PR, affected system business owner, external advisors. Roles and responsibilities should be clearly defined before an incident occurs.
Typical outcomes: procedures ready, report templates, tested scenario.
Schedule Consultation