3. Reaction Phase
The reaction phase focuses on procedures to respond appropriately to data security incidents. In the event of any breach of data security, personal data may be accidental or unlawful lost, deleted or modified, disclosed or made accessible to unauthorized people. One of the things that is important here is to ensure privacy compliance with the duty to report.
Exactly in such situations, written and centrally accessible emergency plans pay off. Only then you can take immediate action and initiate the right steps. As the term «emergency» already implies, these are work processes that are not routinely carried out and, accordingly, are usually not anchored in our thought process.