EDPB adopts Guidelines on examples regarding data breach notification
On 18 January 2020, the European Data Protection Board (EDPB) published new guidance on how to handle data breaches in the form of “Examples regarding Data Breach Notification” (Guidelines 01/2021 on Examples regarding Data Breach Notification – the Guidelines). The Guidelines discuss 18 examples of data breaches, explaining in each case whether the breach must be notified to supervisory authorities and/or to the data subjects concerned. In addition, the Guidelines contain useful recommendations on preventive measures and solutions to mitigate the impact of data breaches.
The Guidelines follow earlier general guidance on the topic from the Article 29 Working Party (WP29). The Guidelines complement the WP29 guidance and provide more practical advice based on the common experiences of the national supervisory authorities of the EEA countries since the GDPR entered into force.
Please click below to read our note on the new guidelines published by the EDPB.
Related insightsSign up for updates