Eligible Data Breach

|

Cyber

What is
Eligible Data Breach
An Eligible Data Breach is the term used under the Privacy Act to describe a data breach involving personal information that is likely to result in serious harm and has not been mitigated, triggering mandatory notification obligations under the NDB scheme.
Eligible Data Breach
in more detail

A data breach will be deemed an Eligible Data Breach when the following three criteria are satisfied:1. Personal information is compromised — either through unauthorised access, unauthorised disclosure, or loss.2. A reasonable person would expect serious harm to result for the individuals affected.3. The organisation hasn’t been able to prevent that harm through remedial action.

RELATED TERM

Trigger Event

arrow right svg

System Failure

arrow right svg

Transaction Fraud

arrow right svg

Supply Chain Attack

arrow right svg

Social Engineering

arrow right svg

Silent Cyber

arrow right svg

Phishing

arrow right svg

Service Degradation

arrow right svg

Resilience Measures

arrow right svg

Security Event

arrow right svg

Security Awareness Training

arrow right svg

Privacy Impact Assessment (PIA)

arrow right svg

Mean Time to Recovery (MTTR)

arrow right svg

Notification Failure

arrow right svg

Operational Disruption

arrow right svg

Multi-Factor Authentication (MFA)

arrow right svg

Malware Propagation

arrow right svg

Infrastructure Failure

arrow right svg

Identity Theft

arrow right svg

External Threat

arrow right svg

Incident Response Plan

arrow right svg

Governance Failure

arrow right svg

Ethical Hacking

arrow right svg

Email Compromise

arrow right svg

Encryption Failure

arrow right svg

Disaster Recovery

arrow right svg

Electronic Data

arrow right svg

Digital Forensics

arrow right svg

Dependent Service Interruption

arrow right svg

Data Theft

arrow right svg

Denial of Service (DoS)

arrow right svg

Data Subject Access Request (DSAR)

arrow right svg

Data Retention Period

arrow right svg

Data Retention Failure

arrow right svg

Data Integrity Loss

arrow right svg

Cyber War / Acts of War Exclusion

arrow right svg

Cyber Theft

arrow right svg

Cyber Extortion Demand

arrow right svg

Credential Stuffing

arrow right svg

Breach Coach

arrow right svg

Botnetting

arrow right svg

Business Email Compromise (BEC)

arrow right svg

Cyber Event

arrow right svg

Application Outage

arrow right svg

Malware

arrow right svg

Business Continuity Plan

arrow right svg

Bodily Injury

arrow right svg

Access Control Failure

arrow right svg

Account Takeover

arrow right svg

Zero Trust

arrow right svg

Zero-Day Exploit

arrow right svg

Vulnerability

arrow right svg

Unauthorised Modification

arrow right svg

Unauthorised Access

arrow right svg

Third-Party Dependency

arrow right svg

Service Interruption

arrow right svg

Third-Party Liability

arrow right svg

Security Breach

arrow right svg

Recovery Time Objective (RTO)

arrow right svg

Ransomware

arrow right svg

Qualified Incident Response Firm

arrow right svg

Outsourced Service

arrow right svg

Known Threat Actor

arrow right svg

Hacker

arrow right svg

Host System

arrow right svg

Approved Provider / Panel Vendor

arrow right svg

Direct Financial Loss

arrow right svg

Incident Response

arrow right svg

Mandatory Ransomware Payment Reporting laws

arrow right svg

Cyber Extortion

arrow right svg

Cryptojacking

arrow right svg

Notifiable Data Breaches (NDB) scheme

arrow right svg

Data Breach

arrow right svg

ALL CATEGORY

Tradies

arrow right svg

Cyber

arrow right svg

Generic

arrow right svg
© 2025 upcover Pty Ltd ABN 17 628 197 437, Corporate Authorised Representative (CAR 1299211) of Experience Insurance Services Pty Ltd ABN 41 657 596 506, AFSL 539078. upcover arranges insurance products with selected insurers and underwriters. upcover does not compare all general insurers or insurance products available in the market.

The information contained on this website is general advice only and has been prepared without taking into account your individual needs, objectives and financial situation. It should not be relied upon as advice. All insurance products are subject to the terms, conditions, limits and exclusions contained in the relevant policy wording and Product Disclosure Statement.  Before deciding whether a particular insurance product is right for you, please consider your personal circumstances and read the relevant Product Disclosure Statement, Target Market Determination, Policy Wording, and Financial Services Guide.