The General Data Protection Regulation (GDPR) is set to go into effect May 25, 2018. The GDPR comes with a new set of requirements. One of them is the data breach notification requirement.
Data breach guidelines
The data breach requirements are stringent and will result in fines for your organisation if not dealt with appropriately.
In short, under the GDPR every personal data breach must be recorded internally. Breaches that poses a risk to the rights and freedom of an individual, need to be reported to your local supervising authority within 72 hours. In addition, breaches containing high risks (e.g. medical information) have to be reported to the individuals affected.
Meeting these requirements, asks for a systematic approach.
The information security application
Therefore we developed the information security application! The application automates the complete procedure so that compliance is no longer an issue. It facilitates internal and external reporting, analysis of causes and consequences, initiating improvement actions and it monitors timescales.