Meldung einer Datenpanne (EN)

Concept

Obligation to report data breaches to supervisory authorities

Definition

The reporting of a data breach is the obligation to report a breach of security of processing to the supervisory authority if it is likely to result in a risk to the rights and freedoms of natural persons. Such reports must usually be made within 72 hours of becoming aware of the breach. The report must contain certain information and is an essential part of risk management in data protection.

Process of data breach reporting

flowchart TD     A[Discovery of data breach] --> B{Risk assessment}     B -->|High risk| C[Report within 72 hours]     B -->|Low risk| D[Documentation for internal purposes]     C --> E[Collect information]     E --> F[Report to supervisory authority]     F --> G[Notify affected individuals]     G --> H[Remedial measures]     H --> I[Implement preventive measures]

Legal basis

DSGVO (Articles 33 and 34)
BDSG (§§ 42a ff.)
State-specific data protection laws

Related terms

Data breach
Risk assessment
Supervisory authority
Notification to affected individuals
DSGVO

Andere Schreibweisen

Data breach notification, Breach notification

Quelle: AI Generated