Data Breach Notification Policy

1. Introduction

At Velvox Gamehosting, we are committed to protecting the privacy and security of our users’ personal data in accordance with the General Data Protection Regulation (GDPR). This Data Breach Notification Policy outlines our procedures for identifying, managing, and reporting data breaches.

2. Definition of a Data Breach

A data breach is any incident where personal data is accidentally or unlawfully accessed, disclosed, altered, or destroyed, or where such data is lost. This includes breaches resulting from both accidental and deliberate actions.

3. Identification and Assessment

If a data breach occurs, it must be reported immediately to the Owner's/Founders and the Cybersecurity team. We will assess the breach to determine:

• The nature and scope of the breach.
• The personal data affected.
• The potential impact on individuals’ rights and freedoms.

4. Notification to Supervisory Authority

In accordance with GDPR Article 33, if a data breach is likely to result in a risk to individuals’ rights and freedoms, we will notify the relevant Supervisory Authority within 72 hours of becoming aware of the breach. Our notification will include:

• A description of the nature of the breach.
• The categories and approximate number of affected individuals and personal data records.
• The likely consequences of the breach.
• The measures taken or proposed to address the breach.

5. Notification to Affected Individuals

If the breach poses a high risk to individuals rights and freedoms, we will notify the affected individuals without undue delay, as per GDPR Article 34. Our notification will include:

• A description of the nature of the breach.
• Support contact details.
• The likely consequences of the breach.
• The measures taken or proposed to address the breach.
• Advice on how individuals can protect themselves from potential adverse effects.

6. Documentation and Review

All data breaches, regardless of their severity, will be documented. This documentation will include:

• The facts surrounding the breach.
• The effects of the breach.
• The remedial actions taken.

We will review each breach to determine the effectiveness of our response and identify any improvements needed in our data protection practices.

7. Training and Awareness

We will provide regular training to our employees on data protection and breach reporting procedures to ensure compliance with this policy and GDPR requirements.

8. Policy Review

This policy will be reviewed and updated as necessary to ensure its effectiveness and compliance with applicable data protection laws.

For any questions regarding this policy, please contact us at
Email: support@velvox.net
PGP: PGP email End-2-End Encryption