Cyber incident information governance (IG) checklist and template notification letter

This checklist sets out what organisations involved in a cyber incident need to consider to comply with their IG obligations in the event of a cyber security incident that involves (or is suspected to involve) a personal data breach.

This template letter or email can be edited to inform patients, service users or members of staff in the event of a cyber incident, which has impacted data.