Under the EU's General Data Protection Regulation (GDPR), organisations must report serious data breaches to their supervisory authority. In the UK, for example, this is the ICO. Organisations must keep a record of all personal data breaches, regardless of whether they are reportable to the regulator.
Ensuring all staff report any breaches to their compliance manager or Data Protection Officer is challenging; staff may not know how to make the report, who the reporting officer is and the associated reporting requirements. This can lead to breaches going unreported, which in some cases can lead to huge fines.
VinciWorks has built a best-practice reporting solution that allows staff to easily and efficiently report any data breaches or concerns. Examples of such breaches include:
All responses that require immediate action can be flagged, allowing data protection officers to easily monitor whether the breach has fully been resolved.
Your staff can easily log all incidents, allowing managers to track all breaches.
View all reports instantly, aggregate them into charts and analyse the severity of the breach.
Decide on the next course of action, including setting reminder emails for further action.
Apply measures to mitigate the risk of similar breaches occurring in future.