Breach Detection: What It Is and Why You Need It

In this digital age, as we become more and more reliant upon digitalised systems in both our personal and professional lives, there is an ever-increasing requirement to ensure that our digital data is protected from any and every external threat. The EU General Data Protection Regulations, more commonly known as GDPR, has been the most important push in data privacy regulation that works to ensure to ensure that sensitive data is secured. A lesser known legal requirement of GDPR is ‘breach detection’, so, in this article, we’re going to outline what breach detection is and the important role it plays in securing your data, and what ACR can do to help you stay compliant.

What is Breach Detection?

Among new data protection requirements introduced by the GDPR is Article 33, otherwise known as ‘breach detection’. In short, breach detection refers to the implementation of software that will monitor, manage, detect and report external threats to your digital environment before they become troublesome breaches.

Malware breaches are often designed to remain hidden in your network long enough to subsequently spread to other areas of your system; the longer it remains undetected, the more information it is able to leak to its creator. For this reason, it isn’t enough to have safeguards or firewalls in place against a security threat or leak. You also need to have a system in place that will monitor your network and alert your team to unusual activity, no matter how seemingly insignificant.

Knowing how to successfully respond to attacks it is an area where many businesses slip up, slow or incorrect action leading to greater damage. Therefore, it is paramount that you invest in a robust breach detection solution that will monitor your digital environment 24/7, and report on any unusual activity and mitigate the threat before it can spread through your system.

Breach Detection and GDPR

Article 33 states that organisations must have vigorous procedures in place to monitor, detect and further investigate personal data breaches, as well as report them within 72 hours of discovery. This new GDPR stipulation has been implemented in order to prevent the ‘accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed’.

One of the GDPR breach detection requirements is the need to provide a detailed description of any breach incurred. This includes:

• type and quantity of data compromised

• an outline of the likely consequences of the attack

• plans on how to tackle its effects

In addition to this, immediate breach detection encourages organisations to be more transparent about data compromises, thus making it a requirement to implement appropriate procedures and also report them to a relevant supervisory authority. Also, where there is a high risk to the rights and freedoms of individuals, those concerned must also be directly notified. This element of GDPR ensures that there is a certain level of transparency to an organisations use of their employees data, and no stone is left unturned when it comes to ensuring it is protected.

ACR’s Breach Detection Services

An understanding of the myriad ways that hackers can operate, how to use and optimise the latest detection technologies and conducting extensive incident investigations needed to thwart attacks are all vital skills that many businesses can lack.

ACR can fill in in those gaps. Our fully managed breach detection and response service will help your organisation to instrument a proactive and comprehensive approach to breach detection. Our 24/7 monitoring and incident response capabilities will identify wide-ranging attacks, remedy threats before they spread to other areas of your network, and fulfil strict reporting obligations, such as those mandated by the GDPR.

To ensure your organisation stays alert, but more importantly GDPR compliant, get in touch today to speak to one of our expert IT consultants to discuss how we can introduce breach detection into your digital environment today.

Case Studies


ACR developed an excellent relationship with the IT Manager at DENSO which meant that crucial information was shared in an open and effective manner.

Longcroft School

It was important to identify one solution to address the issues and a critical component of the solution was the choice of SAN which had to meet the demands of today and the future growth of an ever expanding college.

Parker Hannifin

It was important for Parker Hannifin to select a provider with pedigree, and ACR has a proven track record winning numerous industry recognized awards.

"ACR demonstrated a winning culture, passionate people, valued customers and engaged leadership."

Bishop Grosseteste University

acr logo


ACR IT Solutions Ltd
A2 The Pavilions
Bridge Hall Lane
Gtr Manchester

T: 0161 763 0170

General Enquiries: enquiries@acr-its.com
Sales Team: sales@acr-its.com
Customer Services: services@acr-its.com
Support: support@acr-its.com

ACR - Website Design by Christian Michaels