Privacy Glossary · Definition

Data Breach

An unauthorised acquisition of personal information, typically triggering statutory notification requirements.

Full definition

A data breach is an unauthorised acquisition, access, use, or disclosure of personal information. All 50 US states have breach-notification statutes with varying thresholds and deadlines (typically 30-90 days from discovery). Under GDPR, controllers must notify the supervisory authority within 72 hours. Some breaches trigger a private right of action. CCPA, for instance, allows individuals to sue for breaches of non-encrypted personal information.

Go deeper

What to do after a data breach →

Related terms

CCPA

California Consumer Privacy Act, the first comprehensive US state privacy law, granting California residents rights to know, delete, and opt out of the sale of their personal information.

GDPR

General Data Protection Regulation, the European Union's comprehensive data protection law governing personal data of EU/EEA residents.

Exercise your rights across 500+ brokers

OfflistMe drafts CCPA/GDPR-compliant deletion emails you send from your own inbox, one flat fee, no subscription.

Request Removal Now

FREE

One-time from $7

← Back to the full privacy glossary