HDVerityLawVerityLaw Docs
Help Center

Reporting a Data Breach

SOP for creating a new breach record and reviewing it in the current Data Breach Register.

publicusers

Reporting a Data Breach

This page shows you how to record a new data breach incident and then review it in the breach register.

Product: VerityLaw
Module: Privacy - Data Breach
Role: Information Officer, privacy operator, administrator
Difficulty: Beginner
Time: 5 to 10 minutes
Last Updated: 2026-03-10
Version: Current repo baseline

Before You Start

  • Sign in to the dashboard.
  • Confirm you are in the correct organisation context.
  • Have the basic incident facts ready before you start the form.

What is this task?

This task creates a breach record under the current Data Breach Register workflow. The new-record form captures the initial incident details, and the register is where you review status and follow-up fields afterward.

When do you use this?

Use this task when a privacy incident must be entered into the register for tracking, escalation, and later remediation.

Where do you find it?

Start from: /dashboard/privacy/data-breach
Create route: /dashboard/privacy/data-breach/new
Button on list page: New Breach
Review route after save: /dashboard/privacy/data-breach

How to report the breach

  1. Open /dashboard/privacy/data-breach.
  2. Click New Breach.
  3. Enter Title. This is required.
  4. Enter Description if you need to capture the incident summary.
  5. Set Severity.
  6. Enter Detection Date/Time. This is required.
  7. Enter Affected Records if you know the count.
  8. Enter Data Categories as comma-separated text if you know them.
  9. Enter Root Cause if it is already known.
  10. Click Report Breach.
  11. Wait for the app to return you to /dashboard/privacy/data-breach.
  12. Confirm the breach appears in the register.

What should you verify on the list page?

The current Data Breach Register is the review and follow-up screen. Confirm the new row shows the right:

  • Reference
  • Title
  • Severity
  • Status
  • Detected
  • Reported to Regulator
  • Assigned To

The breach reference is generated automatically when the record is created.

What if something looks wrong?

"I need regulator notification details on the first screen"

Why this happens: The current create form captures the initial breach facts only.

Fix: Save the breach first, then use the Edit action from the register for follow-up details if that route is available in your environment.

"I have several data categories to capture"

Why this happens: The visible form uses one Data Categories text field, not separate chips or multi-select controls.

Fix: Enter the values as comma-separated text exactly as the placeholder suggests.

What's Next

Related Pages

Still Stuck?

  • Search the VerityLaw help set.
  • Use the support bot if your environment exposes it.
  • Contact support: support@veva.co.za

Was this page helpful? [Yes] [No]