NewsPublications

๐—ฃ๐—ฟ๐—ฒ๐—ฝ๐—ฎ๐—ฟ๐—ถ๐—ป๐—ด ๐—ณ๐—ผ๐—ฟ ๐—ฎ๐—ป๐—ฑ ๐—ฟ๐—ฒ๐˜€๐—ฝ๐—ผ๐—ป๐—ฑ๐—ถ๐—ป๐—ด ๐˜๐—ผ ๐—ฑ๐—ฎ๐˜๐—ฎ ๐—ฏ๐—ฟ๐—ฒ๐—ฎ๐—ฐ๐—ต๐—ฒ๐˜€: ๐—ฃ๐—ฟ๐—ถ๐˜ƒ๐—ฎ๐—ฐ๐˜† ๐—–๐—ผ๐—บ๐—บ๐—ถ๐˜€๐˜€๐—ถ๐—ผ๐—ป๐—ฒ๐—ฟ ๐—ฝ๐˜‚๐—ฏ๐—น๐—ถ๐˜€๐—ต๐—ฒ๐˜€ ๐—ฟ๐—ฒ๐˜ƒ๐—ถ๐˜€๐—ฒ๐—ฑ ๐—ด๐˜‚๐—ถ๐—ฑ๐—ฎ๐—ป๐—ฐ๐—ฒ ๐—ผ๐—ป ๐—ฑ๐—ฎ๐˜๐—ฎ ๐—ฏ๐—ฟ๐—ฒ๐—ฎ๐—ฐ๐—ต ๐—ต๐—ฎ๐—ป๐—ฑ๐—น๐—ถ๐—ป๐—ด ๐—ฎ๐—ป๐—ฑ ๐—ป๐—ผ๐˜๐—ถ๐—ณ๐—ถ๐—ฐ๐—ฎ๐˜๐—ถ๐—ผ๐—ป๐˜€

31/07/2023

The Office of the Privacy Commissioner for Personal Data (โ€œPCPDโ€) issued an updated โ€œGuidance on Data Breach Handling and Data Breach Notificationsโ€ (โ€œthe Guidanceโ€) in June 2023 which offers more comprehensive and practical insights to organisations on how to effectively handle data breaches and mitigate the harm that may be caused to affected data subjects.

In the Guidance, the PCPD identified the trends of common causes of data breaches in Hong Kong, which include cyberattacks, system misconfigurations, loss of physical documents/portable devices, improper/wrongful disposal of personal data, inadvertent disclosure byย mail/post, and staff negligence/misconduct.

The Guidance recommends organisations to formulate a comprehensive data breach response plan. The plan should specify the procedures to adopt in the event of a data breach, and the strategies for mitigating its impact. The Guidance further recommends five steps that organisations should take in the event of a data breach.

To know more, please read our latest article for this update prepared by our Partner,ย Charles To, our Associate,ย Tiffany Liย and our Trainee Solicitorย Hank Yeung.