Report a breach
-
UK GDPR personal data breach (DPA 2018)
A breach of security leading to accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data.
-
Communications services security breach (PECR)
Organisations that provide a service letting members of the public to send electronic messages should report personal data breaches here.
-
Trust service provider breach (eIDAS)
Trust Service Providers and Qualified Trust Service must report notifiable breaches to us.
-
Digital Service Provider incident reporting (NIS)
Relevant Digital Service Providers must notify the ICO of an incident under the NIS Regulations.