My Department’s data breach reporting system commenced in 2018 with the introduction of the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. All data breaches are reported to and assessed by the Department’s Data Protection Officer (DPO) in accordance with guidance issued by the Data Protection Commission. In assessing the potential risk for each breach, the DPO takes into account the nature and cause of the breach, the type and volume of data exposed, the corrective steps taken and the likely impact on the individual(s) concerned.
The number of data breaches recorded by my Department since 2018 are as follows :
Year
|
Number of Data Breaches Recorded
|
2018
|
5
|
2019
|
5
|
2020
|
7
|
2021 (To date)
|
3
|