All Data Breaches Must Be Reported - Data Security Is Being Taken Very Seriously
This all changed, on 25th May 2018 GDPR, the general data protection regulation which had been law since 14th April 2016, was finally implemented and came into effect.
Businesses are now legally bound to notify the regulator (the Information Commissioners Office in the UK) if there is a computer security breach and any personal or private data is compromised. If a business is found to have not implemented sufficient computer security measures to protect data, they are liable for some significant fines which could break a business both financially and through loss of reputation with clients.
Who wants to do business with a company that doesn’t care about keeping their client data secure?