UK GDPR & Data Breaches - A Guide to the ICO Notification Requirements

Introduction

One of the key requirements of the UK General Data Protection Regulation is the requirement for controllers to notify the Information Commissioner’s Office in the event of a ‘personal data breach’. Furthermore, in some cases, there is an obligation to inform the data subjects affected.

This virtual classroom seminar summarises the key provisions of the UK GDPR and relevant guidance and also examines a case study requiring the completion of the ICO’s breach reporting form.

What You Will Learn

This live and interactive session will cover the following:

• Meaning of ‘personal data breach’ - what types of breaches are covered?
• Notifying the ICO - when and how is this done?
• Communication to data subjects - when and how is this done?
• Assessing the risk - what factors need to be taken into account?
• ICO’s breach reporting form - how should this be completed?
• Accountability and record keeping requirements - what to record and how?
• Series of practical examples drawn from applicable guidance
• ICO’s most recent statistics and comments re breach reporting
• Summary of practical steps to take

Recording of live sessions: Soon after the Learn Live session has taken place you will be able to go back and access the recording - should you wish to revisit the material discussed.