Recent media reports quote the Data Protection Commission (’DPC’) as confirming that it received 1,184 personal data breach notifications in the first two months after General Data Protection Regulation (‘GDPR’) commenced on 25th May 2018. This equates to around 50% of the total breach notices filed in the entire of 2017. While the increased volume is hardly surprising, the compliance burden on controllers and processors is presenting a real operational challenge.
So are all those notifications necessary?
This article was first published by PDP Journals and should not be re-published on any other website or publication.Download PDF