We’ve all read about them in the media, but what do you do if you experience a data breach?

It is not a time to panic. Don’t rush into takingmthe wrong steps, digging a bigger hole for your business to get out of. Making a rash decision may make the situation worse. We can help you limit the damage to your organisation, your customers, and your reputation.

Data breaches come in all shapes and sizes. Whether it is a small breach involving the loss or disclosure of one person’s information, through to a wide-scale cyber security attack on your key systems. Evolve North’s skills in IT Security and Information Governance can help you contain, manage and learn from these incidents.

Ensuring prompt containment and remediation is key to managing breach or loss. Ongoing communication with the Information Commissioner and Data Subjects helps to ensure you remain compliant with the Data Protection Act and GDPR.

Evolve North can provide breach and incident management, on either an ad-hoc basis or as a monthly subscription assurance service, keeping you safe in the knowledge that at your time of crisis, there is a team of professionals on-hand to support you.

Our consultants have managed multiple breach and loss incidents, including working with the Information Commissioner’s Office and PCI DSS. All have many years of experience in Senior IT Security and Information Governance roles, working within the NHS, Financial Services, Hospitality and Transportation.

But it’s not just about reacting to a breach, Evolve North can help you effectively minimise the chance of incidents and implement effective breach management approaches when they do occur.

We can help you develop effective information risk management programmes to identify where risks may occur, how to mitigate the risks, and effective controls to put in place. This will give you the assurance that you are doing all you can to prevent data breaches occurring in the first place. And, should the worst happen, we can support you in developing effective Data Breach Procedures and Cyber Incident Response Plans so that breaches are handled appropriately and in line with current legislation.

Our breach management service at a glance…

We advise if your breach needs to be reported to the ICO and give guidance when reporting and responding to the ICO and Data Subjects.

Remedial advice is provided for the breach or loss, including hands-on support when needed.

We can help you create effective Breach Policies and Procedures to ensure all staff know how to respond to data breaches.

We support you with the creation and management of effective communication, helping you inform affected data subjects of the potential impact on them, while minimising the potential reputational damage your business may incur.

All organisations are required to report serious breaches within 72 hours under the UK GDPR.

Failure to do so can result in a significant monetary penalty and further prosecution of the Officers of the business.

Talk to a specialist now – call 01748 905 002.


Evolve North works across a wide range of differing industries throughout the UK and Europe in both public, private and voluntary sectors.