Company Data Breach Policy
Be crystal clear on your approach to a data breach.
A data breach is the last thing any organisation wants. A data breach doesn’t just put the data of your customers at risk - it also results in hefty fines for the business.
Depending on the circumstances of the breach, your business can be liable for a maximum fine of £17.5 million or 4% of annual global turnover. Yikes. A data breach policy helps your business minimise risk, contain breaches, and define a process for the protection of personal data.
Examples of when a company data breach policy is needed:
Abiding by the GDPR
The UK GPDR (or the “General Data Protection Regulations”) requires companies to report personal data breaches to the ICO. Your data breach policy will set out what constitutes a breach, and what needs to be done in the event of a dreaded data fallout.
Facing a data breach
Think your company is facing a data breach? With a data breach policy already in place, you’ll have a clear definition of what comes next. From minimising risk to reporting matters to the ICO, a data breach policy will offer some clarity amid the chaos. However, without one in place, the road ahead will look a lot more challenging.
Data protection health check
When it comes to data protection, it can be hard to know where to start. Do your website documents need updating? Is your marketing and cookies banner GDPR compliant? Or worse, are you at risk of a data breach? Our data protection health check gives you a bird’s eye view of the state of your data protection strategy, and outlines what can be done to protect the business and its data.
How to get started
Who this can affect
Don't take our word for it
The team have provided excellent advice and support over the years on both contracting and data protection issues, we really see them as an extension of our team at ActiveViam.
The GDPR: Your Guide to Compliance
The ICO Springs Into Life: Penalty Notices and British Airways
Choosing the Right Legal Partner
We’re a team of data protection fanatics, which means we’re constantly informed on the most up-to-date changes within the data protection world. We ensure your business avoids the wrath of the ICO, and in turn, help you maintain the trust of your consumers.