Data Breach
A data breach is when personal or business data gets accessed, stolen, or leaked by someone who shouldn't have it — whether through hacking, a lost laptop, or accidentally emailing the wrong person. Under GDPR, Irish businesses must report serious breaches to the Data Protection Commission within 72 hours of becoming aware of them. You may also need to notify the affected customers. Having a simple plan in place before a breach happens can save you a lot of stress and potential fines.
Real-world example
A Dublin accountancy practice had a staff member's laptop stolen; they notified the Data Protection Commission within 48 hours and emailed affected clients as required under GDPR.
Related guide
AI Policy for Your Business
Step-by-step guide for Irish business owners — plain English, no jargon.
Open guide →Not sure where to start with AI?
Take the free 5-minute assessment and get a personalised plan for your business.
Take the free assessment →