Version 1.0 - Last Updated: 20 Sep 2022

Your and our responsibilities in the event of a cyber-attack or security incident

Our responsibilities

Your account manager will report the cyber-attack or security incident to our Incident Management team. The Incident Management team will then instigate our Cyber Security Attack Protocol.

Our security team will contact you to discuss the details of the security incident and will identify the level of risk.

Your account manager will:

act as the point of contact between you, our GDPR Executive and the Incident Management team
set up regular keep in touch (KIT) meetings with you during the investigation and give you updates
create an action plan with you that includes timelines for completing work
check with our security team to see if we need to lock your user accounts and reset your passwords
hold a final review meeting with you once both you and we are ready to return to business as usual
tell the Incident Management team once you’ve completed your action plan

Print this chapter

Previous
Your responsibilities

Was this page helpful?

Thank you for your feedback

Help us improve this website

by providing some extra information. You don’t need to give personal details like your name or email address.

What were you doing? *

What went wrong? *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.