A handy guide for data protection regulators.
1) You are being asked about an eye-catching incident that is making the headlines, but which you have not investigated in any way. Is this:
a) AN INCIDENT
b) A BREACH
2) You have investigated an incident, and identified a specific principle that has not been properly complied with by the Data Controller. Is this:
a) A BREACH
b) IT’S A BREACH NOW, IT’S OK
If you answered
Mainly As: You’re correct
Mainly Bs: You work at the Information Commissioner’s Office
Next week: WORKING OUT WHETHER TO ISSUE ENFORCEMENT ACTION UNDER FOI