Data Protection Incidents

Despite all precautions, data protection incidents (“data breaches”) can occur. A swift and comprehensive response, including adherence to notification deadlines for supervisory authorities and data subjects, is then crucial to limit further adverse effects.
You are here:

Legal background

Articles 33 and 34 of the GDPR govern the handling of personal data breaches. Controllers must notify data breaches to the supervisory authority without undue delay and, where feasible, not later than 72 hours, unless the breach is unlikely to result in a risk to data subjects. In the case of a high risk, the data subjects must also be notified.

Our support for you

In the event of a data breach, a swift and structured approach is crucial to minimise risks.

As your external DPO, we provide preventive advice on developing internal processes and emergency plans for the proper handling of data protection incidents.

In the event of a specific incident, we support you in assessing the facts with regard to the risk to the data subjects and advise you on the resulting notification obligations. We guide you through the necessary notification procedures.
Dr. Marc Störing
Managing Director
Certified Information Privacy Professional, CIPP/E
+49 175 930 555 1
marc.stoering@osborneclarke-services.com
Dr. Marc Störing
Geschäftsführer
+49 175 930 555 1
marc.stoering@osborneclarke-services.com
Unsure how to respond to a breach?
Let’s discuss →
Your external data protection officer
Empowered by the experience of a
leading law firm in data protection.
Frequently asked questions

Common Data Protection Topics

Product Compliance Group Data Protection Employee Data Protection Marketing Measures Training Tools and Services Health Data Website Compliance Data Analysis Data Processing Agreements Training and Use of AI Data Sharing Data Act CCTV Data Deletion Data Protection Impact Assessment Policies and Guidelines Privacy Policies Whistleblowing Supervisory Authorities Complaints

Compliance Requirements

Data Protection Management Documentation Obligations Accountability Legal Bases Data Transfers Third-Country Transfers Information Obligations Transparency Obligations Data Subject Rights Data Security Risk Management Data Breaches Deletion and Retention

Legal and Contact

Contact Privacy Notice Imprint
OC Services GmbH, Innere Kanalstraße 15, 50823 Cologne, Germany
Registration Court: Local Court of Cologne, HRB 92393
Managing Director: Gereon Abendroth, Nicolas Gabrysch-Wolff, Dr Marc Störing
Language: