1. Contain and investigate
Contain the incident, preserve evidence, and determine what data and how many individuals are affected.
2. Meet your obligations
- DPDP: notify the Board and affected data principals.
- GDPR: notify the supervisory authority within 72 hours.
- CERT-In: report within 6 hours.
- Sector rules (RBI/SEBI/IRDAI) as applicable.
3. Learn and harden
A post-incident review turns a bad event into fixed root causes and stronger controls.
How CyberSigma helps
We help you prepare (and, if needed, respond to) breaches — containment, forensics readiness and regulatory notification workflows.
This guide is educational and not legal advice. Requirements evolve — validate specifics against the current standard or regulation for your situation.
