GDPR-34-05
Risk Management
34 — Communication of a personal data breach to the data subject
Take subsequent measures to eliminate high risk
Description
Controllers may avoid the obligation to communicate breaches to data subjects if they have taken subsequent measures that ensure the high risk to rights and freedoms of data subjects is no longer...
Full Analysis & Evidence Requirements
Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.
Sign In to ViewRelated Obligations
GDPR-34-01
Reporting
Communicate personal data breach to data subject when high risk exists
GDPR-34-02
Transparency
Describe breach nature in clear and plain language to data subjects
GDPR-34-03
Transparency
Include required information in data subject breach communications
GDPR-34-04
Data Governance
Implement appropriate technical and organisational protection measures
GDPR-34-06
Transparency
Provide public communication when individual notification involves disproportionate effort
GDPR-34-07
Requirement
Comply with supervisory authority orders to communicate breach to data subjects
Map this obligation to your AI systems
ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.
Get Started