The ICO recommends the monthly report in a new section in its guidance on security breach notifications. Public electronic communications service providers must alert it in the event of any security breaches relating to users’ personal data.
The guidance also states that if the breach is of a particularly serious nature, providers need to notify the ICO as soon as possible using a new standard notification form.
Read more on Out-Law.com