The European Data Protection Board published its guidance on examples of data breach notifications. The guidelines, adopted following discussion at the EDPB's December plenary, concern more specific recommendations and best practices around handling data breaches and risk assessment. Specific incidents of focus within the guidance include ransomware attacks, human error, lost or stolen devices, and more.
EDPB publishes breach notification, handling guidelines
RELATED STORIES
Controllers, processors and subprocessors in chains
Notes from the IAPP Canada: Recommendations, calls to reform Privacy Act 'a good start'
A view from DC: Marriott and the minimum extent necessary
Retrospective: 2024 in state sectoral privacy law and AI law
Notes from the Asia-Pacific region: India's PM talks global governance for digital technology