You report a breach of GDPR to the relevant supervisory authority within 72 hours of the breach. You can find contact information for supervisory authorities in the European Data Protection Board directory. Notify users affected by the breach as soon as possible.
A data breach notification to the supervisory authority should describe:
One of the core tenets of GDPR compliance is reporting any data breaches that occur to the appropriate people as soon as possible.
Trusted by thousands of companies worldwide, Termly’s intuitive software generates legal policies and handles consent management for any business in minutes.
Termly allows our users to focus more on their business instead of spending countless hours figuring out data privacy compliance. - Jona, Senior Product Manager @ Termly