In the case of a personal data breach, the controller shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the supervisory authority, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of persons.
Where the notification to the supervisory authority is not made within 72 hours, the reasons for the delay must be given
The processor shall notify the controller without undue delay after becoming aware of a personal data breach.
Please follow us or subscribe to our social media channels.
Arrange your demonstration
Let us show you how we can transform your health and safety, risk and compliance management
Please choose a date and time for your demo. We look forward to meeting with you.
Many organisations are still making the same critical mistake with chemical safety: relying on outdated
When employees spend hours at desks, poor ergonomics can quietly lead to musculoskeletal disorders, eye
October is Cyber Security Awareness Month – the perfect time to reflect on your organisation’s
Prepare for the ISO 27001:2013 to ISO 27001:2022 transition before the October 31, 2025 deadline.
iProtectU sponsor and present at the Ibec Academy OSH Seminar: how integrated safety software turns
A personal data breach must be assessed quickly. If there’s a risk to people’s rights
