Data Security & Breaches

"Controllers and processors are encouraged to plan in advance and put in place processes to be able to detect and promptly contain a breach, to assess the risk to individuals, and then to determine whether it is necessary to notify the competent supervisory authority, and to communicate the breach to the individuals concerned when necessary."

Guidelines on personal data breaches and notifications. Article 29 Data Protection Working Party.

‘Be Prepared’.

• What is a breach?
• What is a ‘reportable’ breach?
• When and how to notify a breach. 
• Breach records management and lessons learned. 

Toolkits

Personal Information Audit
Personal Data Breaches Checklist
Breach Internal Log Template
Breach Reporting
Personal Data Breach Checklist
Records Management Checklist
Article 29 Working Party Breach Guidelines
Guidance on Anonymisation & Pseudonymisation
Sharing Personal Data Checklist
Appointing a Data Processor
Personal Data Storage Limitation Checklist
Personal Data Storage & Retention

Further Links

JOIC Blogs

Resource Room

We would appreciate your opinion

loading...

JERSEY OFFICE OF THE INFORMATION COMMISSIONER

2nd Floor
5 Castle Street
St. Helier
Jersey
JE2 3BT

enquiries@jerseyoic.org+44 (0) 1534 716530
for organisations
Overview for Organisations
Manage Registration
Report a Breach
Do I need to Register for Data Protection?
Resources for Organisations
GDPR and the Relationship with Local Data Protection
Registration & Charges FAQs
Small Organisation Self-Assessment
for individuals
Overview for Individuals
Information for Young People
Raise a Concern
Make a Freedom of Information Appeal
Resources for Individuals
Requesting Your Personal Information
How can we help you?
About
Resource Room
News
Events
Careers
Contact
Stay in Touch
DP & FOI Laws
Service Complaint Policy
Data Protection Statement © Jersey Office of the Information Commissioner 2024 v7.0.0000