CIPL Submits Response to the EDPB Guidelines on Examples Regarding Data Breach Notification

Hunton Andrews Kurth writes:

On March 2, 2021, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth submitted its response to the European Data Protection Board (“EDPB”) consultation on draft guidelines on examples regarding data breach notification (the “Guidelines”). The Guidelines were adopted on January 14, 2021 for public consultation.

The EDPB’s Guidelines are intended to provide concrete personal data breach use cases and recommendations to help organizations (1) implement relevant technical and organizational measures; (2) understand the risk factors to consider when assessing data breaches; and (3) decide whether notification to the supervisory authority (“SA”) or affected individuals is necessary.

Protected health information of 462,000 members of Blue Cross Blue Shield of Montana involved in Conduent data breach
Resource: NY DFS Issues New Cybersecurity Guidance to Address Risks Associated with the Use of Third-Party Service Providers
Bombay High Court Orders Department of Telecommunications to Block Medusa Accounts After Generali Insurance Data Breach
Cyber-Attack On Bectu’s Parent Union Sparks UK National Security Concerns
John Bolton Indictment Provides Interesting Details About Hack of His AOL Account and Extortion Attempt
A business's cyber insurance policy included ransom coverage, but when they needed it, the insurer refused to pay. Why?

Related: