When is a breach response plan activated?

• A. Only after a breach occurs
• B. As part of a data security plan; includes steps to notify participants and authorities
• C. It is not needed
• D. Only for paper data

Answer: (B)

A breach response plan is built into an organization’s data security program and is prepared in advance so it can be activated quickly when a security incident occurs. Activating it triggers a coordinated effort to contain the breach, assess impact, remediate vulnerabilities, and communicate as required. A key part of this plan is the steps for notifying affected individuals and, when required, the appropriate authorities. That readiness and mandated communication make this option the best choice, since it shows the plan is pre-established and includes the necessary notification actions. Breach response plans aren’t something you rely on only after a breach happens, they’re designed in advance; they apply to both electronic and paper data, and they’re essential for regulatory compliance.