Data Breach Assessment

What is Data Breach?

Nowadays, there is a lot of Data Breach has been spread throughout the world. Data Breach severity can be considered as defined but some people will need to remember those context that written in the internet

estimation of the magnitude of the potential impact on the individuals derived from the data breach”

Source: The Dangers of a Data Breach

Criteria and severity level of Personal Breach Policy

Criteria Personal Breach Policy

There are a few criteria that Personal Breach has been created a few years ago just for Personal Breach Assessment such as follows:

  1. Data Processing Context (DPC) usually addresses the various types of breached data where it will link together with a number of factors to an overall context of processing.
  2. Ease of Identification (EI) will determine how easily on the identity of the individuals which can be deduced.
  3. Circumstances of Breach (CB) usually addresses the specific on certain circumstances of the breach where normally it is related to the type of the breach.

Source: What is Personal Data Under GDPR?

Severity Level of Personal Breach Policy

There is Four(4) Severity Level of Personal Breach Policy that we can look into while doing the Assessment

Critical Severity Level

The victim might be facing a few significant or even irreversible consequences when the victim’s data will not be overcome such as sensitive data that been exposed to the public.

High Severity Level

The victims might be facing a few significant consequences when the victim’s data will be able to secure with difficulties that have been overcome.

Medium Severity Level

The victims might be facing a few significant inconveniences when the victim’s data will be able to secure with difficulties that have been overcome.

Low Severity Level

The victims might not be facing a few significant inconveniences and victim’s data will be able to overcome.

Source: Youtube (The Dangers of a Data Breach), Youtube (What is Personal Data Under GDPR?)

Author: Wan Ariff

He brings with him working experience in Information Security filed which specializing in Penetration Testing and Digital Forensic. His passion is more to IT Security

Leave a Reply

Your email address will not be published. Required fields are marked *