One of the most critical aspects of GDPR — the EU’s new data privacy rules — is the data breach notification. Prevention of data breaches is important, but the reality is that there is no guarantee that they will never occur. What is a personal data breach? The GDPR defines it as "a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed". When a breach occurs, notification is crucial as data subjects have the right to know what is happening to their information. The GDPR stresses the rights of data subjects so while it’s not possible to guarantee your organisation will never suffer a breach, there are certain elements your organisation can control — such as the way it treats data subjects. The GDPR obliges organisations to report a breach within 72 hours of becoming aware of it. This obligation is fleshed out in Article 33. "Hey, we have been hacked and...
Would you like to comment on this article?
Sign up (it's quick and free) or sign in now.
Please read our Comment Policy before commenting.
Subscribe now to unlock this article.
Support BusinessLIVE’s award-winning journalism for R129 per month (digital access only).
There’s never been a more important time to support independent journalism in SA. Our subscription packages now offer an ad-free experience for readers.
Cancel anytime.
Questions? Email helpdesk@businesslive.co.za or call 0860 52 52 00. Got a subscription voucher? Redeem it now.