Recital 87
EU GDPR

(87) It should be ascertained whether all appropriate technological protection and organisational measures have been implemented to establish immediately whether a personal data breach has taken place and to inform promptly the supervisory authority and the data subject.

The fact that the notification was made without undue delay should be established taking into account in particular the nature and gravity of the personal data breach and its consequences and adverse effects for the data subject.

Such notification may result in an intervention of the supervisory authority in accordance with its tasks and powers laid down in this Regulation.

The DPO Centre is a leading provider of Outsourced Data Protection Officer, EU Representation and Consultancy services.

Click one of the options below to speak to us about our services

 

Email Call Contact Form

Sign up todayThe DPIA is a bitesize assessment of the impact of the most significant, interesting and important-to-know data protection issues. It’s not the full story, just a brisk, 3-minute resumé, collated and condensed especially for busy privacy professionals to ensure you’re aware of what’s happening in our fascinating, dynamic and engaging industry.