Hero Image


PRIVACY CULTURE DEVELOPMENT

Personal Data Breach Management

A detailed examination of the requirements placed on controllers under the UK GDPR to
detect, record, report and respond to information security incidents involving personal data

Book Now

Course Features

Short day session 10am - 3pm

Experienced instructor

Record of attendance

Public schedule

In-company options

Course Overview

As more aspects of our lives move online, cybersecurity incidents and personal data breaches are a harsh reality of modern life. The mere fact that personal data breaches are becoming increasingly commonplace does not imply that they are either acceptable or unavoidable. As we have seen in the media, the harm to individuals can be devastating, life-threatening, even. At the same time, the reputational damage to organisations caused by a personal data breach can undo years of hard work, leading to regulatory enforcement, potential fines and claims for compensation.

While Article 32(1) of the UK General Data Protection Regulation (GDPR) requires controllers to implement appropriate technical and organisational measures, it is impossible to prevent every personal data breach. Where a breach does occur, Article 33 of the GDPR requires organisations to determine the severity, report certain violations to the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach, and notify affected individuals where there is a high risk that their rights and freedoms have been affected.

In this short course, we address how to detect, record, report and respond to information security incidents involving personal data. Understanding how to respond to and manage different types of security incidents effectively is a necessary skill for any organisation seeking to protect against reputational damage and the loss of consumer trust.

Course Costs

Book this 1-day course on personal data breach management:

£395 + VAT

Package includes:

Book now

Intended Audience

This 1-day course on personal data breach management is suitable for those individuals with the following roles or responsibilities: 

  • Data Protection Officers (DPO)
  • Chief Privacy Officer (CPO)
  • Data protection practitioners
  • Information governance managers
  • Governance, Risk and Compliance (GRC) professionals
  • Information security, IT security and IT professionals

Course Contents:

  • What is a data breach?
  • Different types of cybersecurity incidents and personal data breaches
  • Key definitions and terminology
  • Personal data breach reporting requirements under the GDPR 
  • Failure to notify
  • Incident response planning
  • The role of risk management, business continuity and disaster recovery
  • Related information security standards 
  • How to investigate a data breach
  • Data breaches involving third-party suppliers (processors) 
  • The importance of maintaining a personal data breach register
  • Dealing with the ICO or other supervisory authorities and regulators

Book Now

Our clients