TELLING THE DIFFERENCE BETWEEN AN INCIDENT AND A BREACH

by | May 23, 2014 | Christopher Graham, Data Protection, Data Security, ICO, idiots

A handy guide for data protection regulators.

1) You are being asked about an eye-catching incident that is making the headlines, but which you have not investigated in any way. Is this:

a) AN INCIDENT
b) A BREACH

2) You have investigated an incident, and identified a specific principle that has not been properly complied with by the Data Controller. Is this:

a) A BREACH
b) IT’S A BREACH NOW, IT’S OK

If you answered

Mainly As: You’re correct
Mainly Bs: You work at the Information Commissioner’s Office

Next week: WORKING OUT WHETHER TO ISSUE ENFORCEMENT ACTION UNDER FOI