EU GDPR—personal data breach notification—flowchart


Published by a ³ÉÈËÓ°Òô EU Law expert
Flowcharts

EU GDPR—personal data breach notification—flowchart


Published by a ³ÉÈËÓ°Òô EU Law expert

Flowcharts
imgtext

The EU’s General Data Protection Regulation, Regulation (EU) 2016/679 (EU GDPR) is directly applicable and fully enforceable in EU and EEA states. This Flowchart focuses on personal data breach notification under the EU GDPR.

It covers:

  1. •

    a summary of the overarching obligations

  2. •

    key guidance

  3. •

    types of personal data breaches

  4. •

    the flowchart of notification requirements

  5. •

    general examples of personal data breaches and who to notify

  6. •

    detailed examples of personal data breaches and who to notify

The EU GDPR includes the following definition of a personal data breach:

‘…a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.’

Overarching obligations

In summary, among other things, the EU GDPR provides that:

  1. •

    data processors must notify the data controller without undue delay after becoming aware of a personal data breach

  2. •

    unless the personal data breach is unlikely to result in a risk to the rights and freedoms of individuals, the data controller must notify the appropriate supervisory

Powered by Lexis+®
Jurisdiction(s):
European Union

Popular documents

Scotland—the process for applying for sequestration

Scotland—the process for applying for sequestrationSequestration in Scotland is the legal process by which an insolvent debtor’s estate is gathered in, realised and then distributed among their creditors by a trustee appointed for that purpose. The process requires that a formal award of

What is the difference between an appeal and a review?

What is the difference between an appeal and a review?What is an appeal?An appeal in insolvency proceedings is no different to an appeal in normal litigation. An appeal will be allowed only if the appeal court is satisfied that the decision of the lower court was 'wrong' or 'unjust because of a

Late payment penalties—inheritance tax

Late payment penalties—inheritance taxWhile interest often accrues on overdue tax, the late payment of certain taxes may also attract a penalty. For information on the interest accruing on overdue tax, see Practice Notes: IHT—payment deadlines on death—Interest on IHT and Interest on late paid

Brussels I (recast)—domicile (Arts 4 and 63) [Archived]

Brussels I (recast)—domicile (Arts 4 and 63) [Archived]ARCHIVED: This Practice Note has been archived and is not maintained.This Practice Note considers the general rule set out in Article 4 of Regulation (EU) 1215/2012, Brussels I (recast) when determining the relevance of a defendant’s domicile to