Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » GDPR » Breach Notification

Breach Notification

Breach Notification under the GDPR is the obligation of a controller to report any security incident in which individuals’ personal data have been subject to unauthorized access or disclosure, destruction, or other forms of misuse. 

It helps alert data subjects and regulators of a potential breach and provides them with information about the incident. This can include what occurred, what was impacted, and what is being done to mitigate the effects. 

For example, suppose a 3rd party misuses an organization’s system to access a database containing sensitive financial information on its customers. In that case, that organization must notify authorities within 72 hours of discovering the breach. Failing to do so could result in significant fines and penalties for noncompliance.

Additional reading

An Overview of ISO 27701,The Privacy Information Systems Standard

Bruce Schneier says, “Data is the pollution problem of the information age, and protecting privacy is the environmental challenge.” This quote double-clicks the importance of keeping data and privacy on the highest pedestal of protection. This is where the ISO 27701 certification comes in. ISO/IEC 27701:2019 serves as an essential tool for organizations. It is…

Data Governance Policy: Steps to Create, Examples and Templates

TL, DR: A data governance policy is a guiding document on how to manage an organization’s information assets  There can be different types of data governance policies such as data quality policy, data security policy, data privacy policy, data access policy and more To develop a data governance policy you must define your needs and…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales