De ce breşele de confidenţialitate sunt un sport de echipă
Why Managing Privacy and Data Protection Breaches Is a Team Sport
Author(s): Amalia BarthelSubject(s): Law, Constitution, Jurisprudence, Civil Law, Human Rights and Humanitarian Law, ICT Information and Communications Technologies, EU-Legislation
Published by: Universul Juridic
Keywords: personal data processing; security breaches; privacy breaches; managing privacy and data protection breaches;
Summary/Abstract: Privacy (and data protection) breaches are often mistaken for security breaches. When personal data is compromised due to security vulnerabilities it is the data protection regulation(s) that dictate the process. The legal advisor or specialist in the organization becomes the project manager for investigating and resolving the breach event. They will need to involve a number of employees in various roles, possibly outside counsel specialized in privacy and data protection laws. The information security specialists inside the organization may also hire a forensics firm to understand and analyze the root cause and other breach details. The process of identifying what caused the breach, notifying the authorities, possibly notifying the affected individuals and the overall resolution of the breach becomes a team sport and often a long haul one, where a captain, the person in charge, supported by senior management, is the legal specialist who is knowledgeable in privacy and data protection. Organizations that want to take a different approach or a shortcut to managing a data breach may increase their exposure and legal liability.
Journal: Revista română pentru protecţia şi securitatea datelor cu caracter personal
- Issue Year: 2022
- Issue No: 01
- Page Range: 47-53
- Page Count: 7
- Language: Romanian
- Content File-PDF