The European Data Protection Board published updated guidelines on personal data breach notification under the EU General Data Protection Regulation. The guidelines, adopted 28 March following public consultation, clarify notification requirements for personal data breaches at non-EU establishments. The guidelines state each supervisory authority for member states where affected data subjects reside need to be notified of a breach.
6 April 2023
EDPB updates guidelines on personal data breach notification
Related stories
Notes from the IAPP Canada: Regulators should better understand data breach complexities
Ontario's IPC works toward balancing youth safeguards, empowerment
A view from DC: Pride, coded language and the tragic irony of a private life
UK Parliament advances Data (Use and Access) Bill, awaits Royal Assent
A view from Brussels: Is Europe ramping up its agenda on protecting children online?
