|
answer text |
<p>The Cabinet Office does not require central Government Departments to report their
personal data breaches and so does not hold this information centrally.</p><p> </p><p>In
June of 2018 the Minimum Cyber Security Standards were published requiring each department
to have a plan to reporting data breaches. It states that</p><p><em> </em></p><p><em>Departments
shall have communication plans in the event of an incident which includes notifying
(for example) the relevant supervisory body, senior accountable individuals, the Departmental
press office, the National Cyber Security Centre (NCSC), Government Security Group
(Cabinet Office), the Information Commissioner’s Office (ICO) or law enforcement as
applicable (not exhaustive).</em></p><p> </p>
|
|