← All guides
Privacy · 6 min read

Data Breach Response Guide

A breach is a stress test of your preparation. A clear plan limits the damage and keeps you compliant.

FreeGet "Data Breach Response Guide" as a PDF

Plus occasional, practical compliance guidance from our senior auditors. No spam — unsubscribe anytime.

1. Contain and investigate

Contain the incident, preserve evidence, and determine what data and how many individuals are affected.

2. Meet your obligations

  • DPDP: notify the Board and affected data principals.
  • GDPR: notify the supervisory authority within 72 hours.
  • CERT-In: report within 6 hours.
  • Sector rules (RBI/SEBI/IRDAI) as applicable.

3. Learn and harden

A post-incident review turns a bad event into fixed root causes and stronger controls.

How CyberSigma helps

We help you prepare (and, if needed, respond to) breaches — containment, forensics readiness and regulatory notification workflows.

This guide is educational and not legal advice. Requirements evolve — validate specifics against the current standard or regulation for your situation.

Turn this guide into a plan

Our CERT-In empanelled auditors can take you from reading about it to certified — with a scoped, guided programme.

Book a consultation →