INTERNATIONAL REVIEW FINDS HIGH LEVEL OF AWARENESS OF MANAGING DATA BREACHES
The Gibraltar Regulatory Authority (“GRA”), as the Information Commissioner, took part in the annual Global Privacy Enforcement Network Sweep (the “GPEN Sweep”), which this year considered how organisations in various jurisdictions handle and respond to personal data breaches. Sixteen data protection authorities (“DPAs”), including the GRA, participated in the GPEN Sweep. DPAs were asked to reach out to organisations with a set of pre-determined questions which focused on their current practices for recording and reporting data breaches.