ODO24 Logo
ODO24 Logo
ODO24 Logo
GDPR questions and answers

GDPR: QUESTIONS AND ANSWERS

Category:
Incidents and Fines

What should I do when I have received information about a breach of my personal data?

ANSWER

From the perspective of a data subject, when a breach of their personal data has occurred, they should consider opening an account in a credit and economic information system to monitor their credit activity in order to protect themselves against potential unlawful use of their personal data (there are systems, institutions, and businesses on the market that offer services enabling monitoring of one's credit activity). If any irregularities are identified, they should report the matter to law enforcement authorities.

As regards the right to obtain compensation from the controller, under Article 82(1) GDPR, any person who has suffered material or non-material damage as a result of a breach of the Regulation has the right to receive compensation from the controller or processor for the damage suffered.

Irrespective of the above, the controller bears civil liability for a breach of personal data protection and related personality rights, so a person harmed by such a breach may pursue civil proceedings claiming compensation for property damage and, for non-pecuniary harm suffered in connection with the breach, compensation for pain and suffering (non-material damage).

Show all
PreviousNext

Read also:

12 March 2026

Kiedy nie zgłaszać naruszenia do UODO? Praktyczna analiza art. 33 RODO

06 March 2026

Za co Prezes UODO nakłada kary – podsumowanie wyników raportu

15 October 2025

Jakie kary za marketing telefoniczny bez zgody? Przykłady decyzji i kwoty

Szkolenia

RODO od podstaw (8h) online

Receive a free package of 4 tutorials and 4 e-learning trainings
The controller of your data is ODO 24 sp. z o. o.
What should a person do when their personal data has been breached? | ODO 24 | ODO 24