Report an incident or breach
Data breaches could affect individuals and harm UWE Bristol. Don't delay, report it today.
Data breaches
Most data breaches result from 'accidental loss', for example:
- leaving confidential/personal information on a train
- losing a device with access to confidential/personal information
- sharing confidential/personal information with the wrong people.
Data breaches could affect individuals and harm UWE Bristol.
Report an incident or breach via our online formIf you suspect a breach
- Report it immediately to the Data Protection Office via our online form or calling the IT Service Desk on +44 (0)117 328 3612.
If in doubt, shout! Report it anyway. - Change your password immediately.
You must change your password if you suspect a data breach or that it has been compromised. - Remotely wipe (staff login required) UWE Bristol managed mobile devices that are lost or stolen.
The IT Service Desk will assist you with this if you are unsure.
Don't delay, the longer you leave it the greater risk. The University is required to report personal data breaches to the Information Commissioner's Office (ICO) within 72 hours.
How to avoid a data breach
- Before you process personal data, you must consider if a Data Protection Impact Assessment should be completed.
- Provide individuals with a Privacy Notice describing all the privacy information that you make available or when you collect information about them.
- Process data in line with Data Protection Policy (PDF).
- Promote a clear desk policy.
- Lock physical confidential information away.
- Lock your computer.
- Delete unnecessary information.
- Have adequate security measures in place to protect data and devices.
- Take extra care when emailing personal data.
Examples of data breaches
- Unauthorised/inadvertent disclosure of personal or confidential information verbally.
- Lost or stolen device, laptop, phone or unencrypted memory stick that contains personal or confidential data.
- An email containing personal or confidential data sent to the wrong recipient(s).
- Unauthorised/inappropriate access to personal or confidential data in IT systems.
- Documents or data containing personal or confidential data that are:
- lost or stolen
- found in non-secure/public area
- not stored or disposed of securely.
Passwords
Follow our guidance to ensure you always use secure passwords, as they reduce the risk of data breaches and protect you from threats such as identity theft.
Multi-factor authentication (MFA)
MFA adds an extra layer of security on your account and is quick and easy to set up.
Using a password in combination with MFA significantly increases security.
Set up your security profile to enable MFA.
You may also be interested in
Protect data and devices
Everyone must take steps to secure all their devices and data to reduce the risk of a data breach.
Your UWE Bristol username and password
Useful information about your log in details, which username to use and when.
Cyber Security Awareness
Free, fun, interactive online activities help keep you, your data, and your devices safe from cybercrime.
Data Protection Impact Assessment
Guidance and information for completing a DPIA and a downloadable template.