Skip to main content
Glossary

Data Breach Notification

The legal obligation to inform supervisory authorities and affected individuals when a personal data breach occurs. GDPR requires notification to authorities within 72 hours. NIS2 requires initial notification within 24 hours for significant incidents.

Why it matters

Late or missing breach notifications are among the most common GDPR enforcement actions, often resulting in fines independent of the breach itself. The 72-hour clock starts ticking when you become aware of the breach, not when you finish investigating it. Organizations without a prepared notification process waste critical hours figuring out who to contact, what to report, and how to assess the impact. That delay itself becomes a compliance violation.

In practice

Breach notification requires pre-built templates, clear escalation paths, documented assessment criteria for determining whether notification is required, and contact details for relevant supervisory authorities. The notification must describe the nature of the breach, approximate number of affected individuals, likely consequences, and measures taken. In vucavoid, incidents are tracked with classification, timeline, and impact assessment, providing the structured data needed to meet notification requirements without starting from scratch under pressure.

Related terms

Incident Response

The organized approach to detecting, containing, and recovering from security incidents.

Regulatory Compliance

Adhering to laws and government-mandated requirements. Unlike voluntary frameworks, this is not optional.

Cookie Use on Our Site

To ensure the smooth functioning of our website, we use a limited number of cookies. These cookies are essential for providing you with the services available on our website and to use some of its features. Here is a brief overview:
  • vucavoid_session: This cookie is essential for user authentication. It ensures that your session is secure and recognizes you as you navigate through our site.
  • XSRF-TOKEN: This cookie is critical for website security. It helps protect against cross-site request forgery attacks.
  • latest_marketing_banner_visible_{MARKETING_BANNER_ID}: This cookie simply remembers if you have seen our latest site banner, enhancing your browsing experience without tracking your personal data.

These cookies are strictly necessary to deliver the website, and therefore, we do not require your consent to place these cookies. For more information, please visit our Privacy Policy.