How do I report a breach?
Any individual who accesses, uses or manages information is responsible for reporting data breach and information security incidents immediately to the appropriate manager and the Head of ICT.
If the breach occurs or is discovered outside normal working hours, it must be reported as soon as is practicable. The report will include full and accurate details of the incident, when the breach occurred (dates and times), who is reporting it, if the data relates to people, the nature of the information and how many individuals are involved. An Incident Report Form should be completed as part of the reporting process. All staff should be aware that any breach may result in disciplinary procedures being instigated.