AEPD creates tool for data controllers to identify relevant authorities to report a breach

Spain’s data protection authority, the Agencia Española de Protección de Datos, created a tool designed to help organizations determine whether to notify a data protection regulator following a breach. The tool, “Brecha Advisory,” is free to use. It aims to help data controllers identify who should be notified, what elements in the breach contain personal data and which data protection regulator to report to.