CEDPO hat participated in the recent EDPB consultation on Guidelines 01/2021 on Examples regarding Data Breach Notification.
According to CEDPO’s member associations, a high degree of uncertainty exists, if a personal data breach is subject to a notification obligation towards supervisory authorities or the data subject.
Based on a survey among member associations, more examples of breaches were gathered for the EDPB which can be part of the finalised Guidelines 01/2021. Furthermore, controversial examples of the EDPB were commented in order to harmonise the risk assessment on data breaches.
You can download our position paper here.