108 Communication of a personal data breach
Data Protection Act 2018 (2018 c 12) | Legislation

Obligations relating to personal data breaches

108  Communication of a personal data breach

(1)     If a controller becomes aware of a serious personal data breach in relation to personal data for which the controller is responsible, the controller must notify the Commissioner of the breach without undue delay.

(2)     Where the notification to the Commissioner is not made within 72 hours, the notification must be accompanied by reasons for the

Powered by Lexis+®
 

Popular documents

LEXISNEXIS

Directors’ remuneration

Directors’ remunerationCompany directors are not, by virtue only of their office as director, automatically entitled under company law to remuneration for services as a director or to reimbursement of expenses incurred in rendering such services. Power to pay directors remuneration for their

LEXISNEXIS

Transferred malice

Transferred maliceThe principle of transferred maliceIf a person has a malicious intent towards X and, in carrying out that intent, injures Y, he is guilty of an offence. So, if D shoots at A with intent to kill him but kills B by mistake it is murder; the mistake as to the identity of the victim is

LEXISNEXIS

Resulting trusts

Resulting trusts represent one of the three types of trust which do not require to be declared or evidenced in writing. The others are constructive and implied trusts, although it is perhaps doubtful whether there is any form of implied trust which is not in fact either a resulting trust or a

LEXISNEXIS

Wounding or causing grievous bodily harm with intent

Wounding or causing grievous bodily harm with intentThe offence of causing grievous bodily harm with intentWounding or causing grievous bodily harm (GBH) with intent is triable only in the Crown Court on indictment. Elements of the offence Under the Offences against the Person Act 1861 (OATPA 1861),