Day 1 of GDPR and I have had the first report of a breach from a school I am working with!
A memory stick containing personal data has been lost during a journey... the good news is the school had taken my advice to ensure all memory sticks used by staff are encrypted.
It means that the breach will need to be recorded on the breach log but there is not going to be the embarrassment of needing to self-report to the ICO the day legislation came into force.
A timely reminder to everyone to either encrypt memory sticks or to stop using them at all.