What you need to know about incident reporting

Effective incident management within cyber and privacy security is essential for any organization. Knowing when to legally report a data breach to the data subject or to the appropriate authorities is one aspect. But within your operational management, identifying and addressing weaknesses and causes of incidents is a key component. What you don’t know, you can’t address

Duty to report data breaches

Did you know that a breach of personal data needs to be reported to the relevant data protection authority within 72 hours of detection? And that this should be part of your data breach incident response plan that should be ready? In certain cases, the government can provide assistance with cyber incidents.

What you need to know about incident reporting

Properly addressing a data security incident can significantly reduce the impact on your business. Being well prepared and having a plan of action does not guarantee that you will never have an incident. But it does significantly reduce the chances of an incident and especially the impact of an incident.

Having a detailed plan of action is not only extremely important for any organization but in many cases it is also a legal requirement. A good Incident Response Plan, which takes into account the GDPR, among other things, will give you peace of mind.

Do you wish to avoid sleepless nights due to incidents involving personal data

Get started for free!
Do you wish to avoid sleepless nights due to incidents involving personal data
Incident registration

Optimal protection against possible incidents

We offer some services that not only prepare you for incidents but also help you avoid as many incidents as possible.

  • Structured processes for specific incidents such as a ransomware incident.
  • Take user awareness to the next level by educating your employees on how to recognize and report (potential) data incidents.
  • Clear process for personal data breaches: risk-driven and integrated approach to personal data incidents.
  • Incident readiness assessments: we map out the work points for threats within your organization.
  • Data security scans: we actively help you measure your cyber resilience.

Your incident registration step by step

Do you encounter a data security incident anyway? Then incident recording can be a stressful task. Our platform guides you through this process step by step.

  • Identify the processing operations in scope based on the data affected and their relationship to the processing operations in your processing register.
  • Affected data types, persons (‘data subjects’) and processing risks are automatically distilled from the known information.
  • We initially estimate the impact of the incident.
  • You can of course fine tune it yourself.
Incident registration step by step
Automatic estimation of the incident

Automatic assessment of the incident based on known information.

Within our service, you collect a lot of data. Based on these data we can automate a lot during an incident registration.

  • Automatic mapping of data processing in scope based on impacted data.
  • Types of leaked information, parties involved & types of data subjects automatically identified from the processing.
  • An initial risk assessment based on data types, number and type of data subjects.
  • Automatic creation of a pdf that you can deliver to your data protection authority (DPA).
  • If necessary, a template to inform the data subjects about an incident.

Support your incident management with a policy tailored for your organization.

Ready for achievable GDPR incident management?

Try Co-Dex.eu for free!
Ready for achievable GDPR incident management?