GDPR-34-07 Requirement 34 — Communication of a personal data breach to the data subject

Comply with supervisory authority orders to communicate breach to data subjects

Description

Controllers must communicate personal data breaches to data subjects when required to do so by the supervisory authority, even if they have not already done so voluntarily.

Full Analysis & Evidence Requirements

Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.

Related Obligations

GDPR-34-01 Reporting

Communicate personal data breach to data subject when high risk exists

GDPR-34-02 Transparency

Describe breach nature in clear and plain language to data subjects

GDPR-34-03 Transparency

Include required information in data subject breach communications

GDPR-34-04 Data Governance

Implement appropriate technical and organisational protection measures

GDPR-34-05 Risk Management

Take subsequent measures to eliminate high risk

GDPR-34-06 Transparency

Provide public communication when individual notification involves disproportionate effort

Map this obligation to your AI systems

ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.

Get Started

Comply with supervisory authority orders to communicate breach to data subjects

Description

Full Analysis & Evidence Requirements

Related Obligations

Map this obligation to your AI systems

Start your compliance assessment