Data Breach Response Plan

The Data Breach Response Plan outlines the procedures Blu Brain will follow in the event of a data breach. This is designed to ensure a swift, effective, and legally compliant response to protect our customers and business.

1. Identification and Assessment

Detection: Utilise Bitdefender and other security tools to identify potential data breaches promptly.

Initial Assessment: Determine the scope and impact of the breach. Assess the type of data involved and the potential harm to affected individuals.

2. Containment and Control

Immediate Action: Disconnect affected systems to prevent further data loss. Secure backups to ensure data restoration.

Access Control: Change passwords and access controls, especially for critical services like WooCommerce, Office 365, and LastPass.

3. Investigation

Forensic Analysis: Work with IT professionals to conduct a thorough investigation using tools and logs from WordPress, hosting services, and security software.

Determine Cause: Identify the breach's cause, whether it's a technical flaw, human error, or a malicious attack.

4. Notification

Regulatory Compliance: Follow legal requirements for breach notifications based on jurisdiction. This may include GDPR, if applicable.

Communicate with Affected Parties: Notify affected users promptly through Freshdesk and email (Office 365). Provide clear information about what happened, what data was involved, and what steps they should take.

5. Remediation

Fix Vulnerabilities: Address the security weakness that led to the breach. This may involve updating WordPress plugins or changing security protocols.

Review and Update Policies: Reassess current security policies and procedures, including data encryption, access controls, and regular security audits.

6. Recovery

System Restoration: Restore systems and data from backups after ensuring security issues are resolved.

Monitor Post-Breach Activity: Keep a close watch on network activity and user behaviour to detect any anomalies.

7. Documentation

Record Keeping: Document all actions taken from breach detection to resolution for accountability and future reference.

Legal Compliance: Ensure all documentation meets legal requirements for potential audits or investigations.

8. Training and Prevention

Staff Training: Conduct regular training sessions on data protection and breach prevention for all staff.

Regular Audits: Schedule regular security audits and reviews of all systems, including WordPress plugins and external services.

9. Handling Breaches Involving Freshdesk Support Portal:

Assessment of Impact on Freshdesk Data: In the event of a data breach, we will specifically assess if the breach has impacted the data stored on our Freshdesk support portal. This includes personal information in support tickets and communication history.

Immediate Steps for Freshdesk Data: If a breach affects the Freshdesk portal, we will work closely with Freshdesk's security team to contain and assess the impact, ensuring rapid response and mitigation.

Notification of Affected Freshdesk Users: So that you know, users of our Freshdesk support portal will be notified quickly if their data has been compromised in accordance with legal requirements and our commitment to transparency.

Remedial Actions: We will take appropriate actions to secure the portal, which may include resetting passwords, enhancing security protocols, and working with Freshdesk to address specific vulnerabilities.

10. Communication and Transparency

Open Dialogue with Customers: Maintain clear and transparent communication with our customers about the steps we are taking to prevent future breaches, including measures specific to our Freshdesk support portal.

Updates on Breach Resolution: Provide regular updates to affected users on the resolution of the breach, particularly those involving the Freshdesk portal.

Effective Date: 23/12/2023