RS.CO-02:

Implementation Examples

Ex1:

Follow the organization's breach notification procedures after discovering a data breach incident, including notifying affected customers

Ex2:

Notify business partners and customers of incidents in accordance with contractual requirements

Ex3:

Notify law enforcement agencies and regulatory bodies of incidents based on criteria in the incident response plan and management approval