Free to try · GDPR · Art. 33 & 34

Did you have a data breach?

Use ENISA's methodology to assess severity, determine your 72-hour DPA notification obligation, and generate a breach register record — entirely in your browser.

4 steps

~5 minutes

ENISA methodology

100% in-browser

⚠️

Free to try · GDPR · Art. 33 & 34

GDPR Breach Checklist

Step-by-step assessment for GDPR data breach response. Calculates notification obligations under Art. 33 & 34 using the ENISA methodology, with a built-in 72-hour countdown timer.

72-hour DPA notification countdown
Severity scoring using ENISA methodology
Notification decision guide (Art. 33 & 34)
Breach register record — 100% in-browser

🔒 No breach data leaves your browser. All calculations run locally — nothing is sent to or stored on our servers.
ℹ️ Results apply the ENISA methodology and are for informational purposes only. Consult your DPO for formal breach response decisions.

Free account required · All calculations run in your browser

ENISA Severity Assessment

⚪

—

⏱️

72-hour DPA notification deadline

--:--:--

🏛️ DPA Notification

—

👤 Individual Notification

—

⚡ Immediate actions

📋 Breach Register Record

Pre-filled based on your responses. Complete the description and sign-off fields. Print or save for your records.

BR-2026-001

Date & time discovered

—

Estimated date & time occurred

—

Breach type(s)

—

Number of individuals affected

—

Data categories affected

—

Severity

—

DPA notified

—

Individuals notified

—

Description of the breach (what happened, how, root cause)

Completed by

Disclaimer / Aviso legal: This tool provides a provisional assessment based on the ENISA Personal Data Breach Severity Assessment methodology. The severity score and notification thresholds are calculated entirely in your browser using rule-based logic derived from the official ENISA methodology — no data is sent to any server, and no AI is used. It does not constitute legal advice. The severity determination and notification obligation depend on the specific facts of your breach. Consult a qualified GDPR professional or your Data Protection Officer for binding decisions. See our Privacy Policy for details on data handling.

Did you have a data breach?

GDPR Breach Checklist

When did the breach occur and when was it discovered?

What type of breach occurred?

Which categories of personal data were affected?

What were the circumstances of the breach?

⚡ Immediate actions

📋 Breach Register Record