Part of Data Security Standard 6 - Responding to incidents
Incident reporting (6.1.1)
Definition and scope
For the purposes of the Data Security and Protection Toolkit, an incident or breach is considered to be an adverse event that has a data protection or security implication. It can have many definitions, ranging from an IT service desk type definition to a wider business continuity incident. An incident may involve digital and/or paper-based information, and could be fairly small, affecting one personal record, or massive, affecting millions.
Incident reporting is a method or means of declaring any unusual problem, occurrence or other situation that may have (or is likely to lead to) undesirable effects, or which has violated established policies, procedures or practices.
Breaches can be grouped into three categories:
- Confidentiality breach: the unauthorised or accidental disclosure of, or access to, personal data
- Availability breach: the unauthorised or accidental loss of access to, or destruction of, personal data
- Integrity breach: the unauthorised or accidental alteration of personal data
Last edited: 27 September 2022 11:38 am