The EU general data protection regulation 2016/679 (GDPR) will take effect on 25 May 2018. Unfortunately, Brussels has not provided a clear overview of the 99 articles and 173 recitals. The PrivazyPlan® fills this gap (with a table of contents, cross-references, emphases, corrections and a dossier function). Data protection/Privacy/Privazy according to plan.

Table of contents

Info  /  Regulation  /  Dossier

Dossier for "Personal Data Breach" (Demo)

The sheer number of legal provisions makes it difficult to keep track. This is why we added the "Dossier" function for key terms, which displays the most important sources for various terminology. It ensures you can gain a quick and knowledgeable overview of the entire legal situation.

This free "demo" version of the dossier only provides an excerpt featuring the first two articles and recitals. If you purchase the PrivazyPlan®, every aspect will be covered.

Dossiers are currently available for the following terms:

Advertising, Anonymisation, Automated Decision In Individual Cases, Compensation, Complaint, Compliance, Consent, Copy (for Data Subject), Correction, Cross-Border Processing, Data Minimisation, Data Portability, data protection by design, Data Protection Guarantee, Data Protection Impact Assessment, Data Protection Officer, Deletion, Disclosure, Encryption, Establishment, Extensive Processing, Files, Fine, Group Of Undertakings, Identification, Legitimate Interests (Controller), Legitimate Interests (Data Subject), Limitation Of Processing, Objection, Obligation, Opening Clause, Permission, Personal Data Breach, Privileged Purposes, Processing On Behalf, Processing On Behalf (Controller), Processing On Behalf (Processor), Professional secrecy, Profiling, Prohibition, Proof, Pseudonymisation, Publication Of Personal Data, Purpose (Binding), Purpose (Change), Records of processing activities, Reporting to supervisory authority, Representatives, Revocation, Risk For Rights And Freedoms, Shared Responsibility, Strategie, Task in Public Interest, Technical And Organisational Measures, Transfer To Third Countries, Transmission, Transparency

The dossier for "Personal Data Breach" has 15 matches:

Article 4 Nr. 12 - Definitions

(12) ‘Personal Data Breach’ means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;

Article 33 - Notification of a personal data breach to the supervisory authority

1. In the case of a Personal Data Breach, the controller shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the Personal Data Breach to the supervisory authority competent in accordance with Article 55, unless the Personal Data Breach is unlikely to result in a risk to the rights and freedoms of natural persons. Where the notification to the supervisory authority is not made within 72 hours, it shall be accompanied by reasons for the delay.

2. The processor shall notify the controller without undue delay after becoming aware of a Personal Data Breach.

3. The notification referred to in paragraph 1 shall at least:

(a) | describe the nature of the Personal Data Breach including where possible, the categories and approximate number of data subjects concerned and the categories and approximate number of personal data records concerned;

(b) | communicate the name and contact details of the data protection officer or other contact point where more information can be obtained;

(c) | describe the likely consequences of the Personal Data Breach;

(d) | describe the measures taken or proposed to be taken by the controller to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects.

4. Where, and in so far as, it is not possible to provide the information at the same time, the information may be provided in phases without undue further delay.

5. The controller shall document any Personal Data Breaches, comprising the facts relating to the Personal Data Breach, its effects and the remedial action taken. That documentation shall enable the supervisory authority to verify compliance with this Article.

The match number 3 is available, if you buy the PrivazyPlan®.

The match number 4 is available, if you buy the PrivazyPlan®.

The match number 5 is available, if you buy the PrivazyPlan®.

The match number 6 is available, if you buy the PrivazyPlan®.

The match number 7 is available, if you buy the PrivazyPlan®.

The match number 8 is available, if you buy the PrivazyPlan®.

The match number 9 is available, if you buy the PrivazyPlan®.

The match number 10 is available, if you buy the PrivazyPlan®.

The match number 11 is available, if you buy the PrivazyPlan®.

The match number 12 is available, if you buy the PrivazyPlan®.

The match number 13 is available, if you buy the PrivazyPlan®.

The match number 14 is available, if you buy the PrivazyPlan®.

The match number 15 is available, if you buy the PrivazyPlan®.

Hinweis: Bitte beachten Sie, dass die Auswahl der Trefferstellen ganz subjektiv nach unserem fachlichen Ermessen erfolgte. Wir haben uns speziell auf jene Bestimmungen konzentriert, die die nicht-öffentlichen Stellen betreffen. Für Korrekturen und Anregungen sind wir dankbar.

to top

Would you like to implement the EU General Data Protection Regulation step-by-step? Do you want clear explanations of specific issues and well-thought-out checklists? Do you want to ensure you are data-protection-compliant? If so the PrivazyPlan® is just what you are looking for.

© SecureDataService, Nicholas Vollmer, Priorstr. 63, 41189 Mönchengladbach, Germany, +49 2166 96523-30, info@privazyplan.eu (siehe Impressum / Datenschutz) (22.08.2022)