Data breach reporting Step 4: preventive measures and taking action
When reporting to the supervisory authority on a personal data breach, you will need to describe any measures you had in place to prevent a breach, the actions you have taken (or will take) as a result of the breach, and actions you have taken to fix the problem and mitigate any adverse effects.
It is essential that all staff are aware of their security responsibilities and are able to report potential attacks as soon as possible. Regular staff awareness training will help embed effective practices throughout and reduce your risk of attack.
As well as providing staff with training on the EU General Data Protection Regulation and their data protection responsibilities, aligning your information security efforts with best practice will help you reduce the risk of the majority of data breaches, and also help you mitigate any adverse effects if you do experience one.
Effective information security combines three basic tenets: people, processes and technology. This means that you need a set of technical controls, supported by robust policies and procedures, managed by appropriately trained staff, and driven by top leadership.
Discover our range of solutions
The following solutions will help you train your staff on their responsibilities in a cost effect manner and get information security sorted.
Staff awareness training
This simple-to-use, interactive GDPR Staff Awareness E-learning Course introduces the Regulation and the key compliance obligations for organisations. It aims to provide a complete foundation on the principles, roles, responsibilities and processes under the GDPR.
The interactive Information Security Staff Awareness E-Learning Course teaches the most important elements of information security, and aims to reduce the likelihood of human error by familiarising non-technical staff with security awareness policies and procedures.
Deploy a bespoke staff awareness training programme based on your organisation’s unique needs and culture, which may include any combination of e-learning, posters, gamified digital elements, staff newsletters, workshops and more
Our unique GDPR training programme provides a comprehensive introduction to the Regulation’s requirements, and a practical guide to planning, implementing and maintaining a GDPR compliance programme
The following solutions will help you get information security sorted.
Cyber security best practice: ISO 27001 and penetration testing
ISO 27001 is the world’s leading information security standard, trusted by thousands of organisations, and supports the implementation of an information security management system (ISMS). Combining bestselling tools, software, guides and qualification-based training with up to 40 hours of online consultancy, our implementation bundles have been expertly created to meet the unique needs of your organisation. These bundles will reduce the time and effort required to implement an ISMS aligned with ISO 27001.
Our unique ISO 27001 training programme provides a comprehensive introduction to ISO 27001 and its requirements, and delivers practical guidance to implementing and auditing an ISMS (information security management system).
This toolkit includes all the essential policies and procedures you would ever need to comply with the leading information security standard, ISO 27001, and helps you to implement a system that will enable you to reduce your data breach risks.
By implementing a regular penetration testing regime, you can continually measure and improve the security performance of your systems and networks, ensuring that your assets and information are appropriately protected at all times.
Further reading and learning
Learn how to build an appropriate information security policy, achieve better information security results and address security issues with the essential advice in this book.
Find out more
Learn all about the world’s leading information security standard and develop your understanding of the Standard with 4 different best-selling books.
Find out more
Speak to an expert
Do you know the steps you need to take once you’ve suffered a data breach? Speak to an expert today for more information and discover what to when disaster strikes. Don’t fall victim to a data breach, get #BreachReady now!