Data breach as per Art. 4, no. 12 of the GDPR, is the “breach of the protection of personal data”, a breach of security that, whether inadvertently or unlawfully, leads to the destruction, loss, alteration or unauthorised disclosure, or unauthorised access to personal data, which has been transmitted, retained or otherwise processed.
Examples of the loss of personal data of Med. Uni. Graz:
The notification of a data breach must be made immediately to the Data Protection Officer of Med Uni Graz. On the one hand, this is necessary to protect personal data or to protect the integrity of the IT structure and, on the other hand, to be able to comply with the reporting obligation to the supervisory authority.