Skip to content
Docsie Logo

Free Cybersecurity & Privacy Template

Free Breach Notification Plan

Notification plan for privacy or security breaches

Trigger Criteria Assessment Timeline Notification Matrix Message Content Approvals Recordkeeping
Download Word Download PDF Download Markdown
Generate from Video Browse Templates

Breach Notification Plan

Use this template to notification plan for privacy or security breaches.

Template Metadata

Field Details
Category Cybersecurity & Privacy
Owner [Team or owner]
Version [Version number]
Effective Date [Date]
Review Cycle [Monthly / Quarterly / Annual / Event-based]
Status [Draft / In Review / Approved]

Trigger Criteria

Define what events require breach assessment and escalation.

Item Details Owner Status
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]

Notes

[Add context, assumptions, exceptions, evidence links, screenshots, calculations, or reviewer comments.]

Assessment Timeline

Set time-bound steps for impact analysis and notification decisions.

Item Details Owner Status
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]

Notes

[Add context, assumptions, exceptions, evidence links, screenshots, calculations, or reviewer comments.]

Notification Matrix

Map customers, regulators, processors, insurers, and internal stakeholders to requirements.

Item Details Owner Status
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]

Notes

[Add context, assumptions, exceptions, evidence links, screenshots, calculations, or reviewer comments.]

Message Content

List required facts, affected data, actions taken, and customer guidance.

Item Details Owner Status
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]

Notes

[Add context, assumptions, exceptions, evidence links, screenshots, calculations, or reviewer comments.]

Approvals

Define Legal, Privacy, Security, executive, and communications approval flow.

Item Details Owner Status
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]

Notes

[Add context, assumptions, exceptions, evidence links, screenshots, calculations, or reviewer comments.]

Recordkeeping

Specify evidence, decision logs, notices, and delivery confirmations retained. Use factual, jurisdiction-aware wording and avoid unsupported conclusions.

Item Details Owner Status
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]
[Item or requirement] [Describe the relevant detail, evidence, or decision] [Owner] [Open / Complete]

Notes

[Add context, assumptions, exceptions, evidence links, screenshots, calculations, or reviewer comments.]

Template Structure

What the Breach Notification Plan Includes

Use this cybersecurity & privacy template as a starting point, then customize each section to match your internal workflow, evidence, and signoff needs.

1

Trigger Criteria

Define what events require breach assessment and escalation.

2

Assessment Timeline

Set time-bound steps for impact analysis and notification decisions.

3

Notification Matrix

Map customers, regulators, processors, insurers, and internal stakeholders to requirements.

4

Message Content

List required facts, affected data, actions taken, and customer guidance.

5

Approvals

Define Legal, Privacy, Security, executive, and communications approval flow.

6

Recordkeeping

Specify evidence, decision logs, notices, and delivery confirmations retained. Use factual, jurisdiction-aware wording and avoid unsupported conclusions.

Recommended Structure

Write a breach notification plan for [organization or incident type]. Structure with these Markdown sections:

Trigger Criteria

Define what events require breach assessment and escalation.

Assessment Timeline

Set time-bound steps for impact analysis and notification decisions.

Notification Matrix

Map customers, regulators, processors, insurers, and internal stakeholders to requirements.

Message Content

List required facts, affected data, actions taken, and customer guidance.

Approvals

Define Legal, Privacy, Security, executive, and communications approval flow.

Recordkeeping

Specify evidence, decision logs, notices, and delivery confirmations retained.

Use factual, jurisdiction-aware wording and avoid unsupported conclusions.

Example Filled Template

Breach Notification Plan: Customer Data Exposure

Trigger Criteria

Start breach assessment when personal data may have been accessed, disclosed, altered, or deleted without authorization.

Assessment Timeline

Timeframe Action
0-4 hours Declare incident and preserve evidence
4-24 hours Identify affected data and subjects
24-48 hours Draft notification recommendation
48-72 hours Send regulator notice if required

Notification Matrix

Recipient Trigger Owner
Customers Customer data affected CSM + Legal
Supervisory authority GDPR notifiable breach DPO
Cyber insurer Material incident Legal

Message Content

Include what happened, data involved, actions taken, recommended customer steps, and contact details.

Recordkeeping

Retain incident timeline, legal assessment, notification drafts, approvals, and delivery confirmations.

Skip Manual Drafting

Generate a Breach Notification Plan from a Video

Record a walkthrough, training session, or process demonstration. Docsie AI turns it into structured documentation using this template as the starting framework.

Generate from Video See Video-to-Docs

Use the template manually, or let Docsie generate the first draft from source footage.

DOCX, PDF, and Markdown downloads
Works with process and training videos

More Cybersecurity & Privacy Templates

Access Review Report

Periodic user access review for systems and privileged roles

Learn More

Data Protection Impact Assessment

DPIA for high-risk processing of personal data

Learn More

Data Retention Policy

Policy for retention, deletion, and archival of data

Learn More

Privacy Request Runbook

Runbook for handling privacy and data subject requests

Learn More

SOC 2 Evidence Plan

Evidence collection plan for SOC 2 audit controls

Learn More

Security Exception Request

Request and approval record for security policy exceptions

Learn More

Template FAQ

Breach Notification Plan FAQ

Common questions about using and generating a breach Notification Plan.

Using This Template

Q: What is a breach Notification Plan?

A: A breach Notification Plan is a structured document for notification plan for privacy or security breaches.

Q: Can I download this breach Notification Plan as Word or PDF?

A: Yes. This page includes free downloads in DOCX, PDF, and Markdown formats so you can edit, share, or import the template into your documentation system.

Q: Can Docsie generate this from a video?

A: Yes. Upload a process walkthrough, training recording, or screen capture to Docsie, then use this template structure to generate a first draft automatically.