Try this first
- 1Definition: a security breach that accidentally or deliberately leads to destruction, loss, alteration, unwanted disclosure or access to personal data.
- 2Examples that count: lost laptop, mail to wrong recipient with customer data, hacked account, ransomware on a fileserver with personal data.
- 3Examples that usually do not: a colleague accidentally sees an open mail from another, or a paper without personal data blows away.
- 4Edge cases: a lost backup tape you know is encrypted. No risk = usually no duty to report, but register internally.
- 5Always store in your internal breach register. Even 'small' leaks. The DPA can request this in an audit.
When to bring us in
Not sure if a specific case counts? Do not guess. We have a regular GDPR lawyer who can do a short review at a reasonable rate. Much cheaper than a fine.
See also
- I think I clicked a phishing linkNo shame, happens to everyone. The next fifteen minutes matter.
- A colleague's account is acting strangelySending mail in their name, rules hiding folders, unusual sign-ins. Suspicious.
- Lost the MFA app: new phone, no backup codesClassic problem after a phone upgrade. You are not the first to be locked out.
None of the above fits?
Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.
Or skip the DIY entirely
Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.