Follow Us

Follow us on Twitter  Follow us on LinkedIn
 

19 March 2018

Insurance Europe: GDPR data breach reporting templates developed by insurance industry


Insurance Europe has developed a template that could help companies meet the obligation under the General Data Protection Regulation (GDPR) to notify their competent supervisory authority about personal data breaches.

The template could be of particular interest to SMEs and supervisory authorities. The former could rely on it instead of undertaking a descriptive exercise in the midst of a data breach, for which they may not have the resources. The latter could benefit from a standardised format allowing them to share incident data across borders, to better detect trends and to gain insights about how to combat cyberthreats across Europe.

The template is set up in such a way that the information gathered can be shared without the need to be anonymised or aggregated, as it will not be possible to identify a company through the information it provides.

If used widely, the template could contribute to enhancing the information and data that is available on cyber risks, and so increase society’s cyber resilience. Currently, the lack of available information on cyber events hampers a range of stakeholders, notably insurers, which are limited in their ability to offer cyber risk cover and related services. This could change if insurers are granted access to the anonymised data that will be gathered by the national supervisory authorities as a result of the data breach provisions.

Full news

Template



© InsuranceEurope


< Next Previous >
Key
 Hover over the blue highlighted text to view the acronym meaning
Hover over these icons for more information



Add new comment