Incident Readiness
DPDP breach readiness checklist.
Prepare the people, evidence, and processes needed when a suspected personal-data incident occurs.
Minimum readiness questions
- Who receives suspected incident reports?
- Who decides whether personal data is involved?
- Which systems preserve evidence and logs?
- Which vendors must be contacted?
- Who owns customer, regulator, partner, and internal communication drafts?
- Where are incident records stored?
- How are lessons and remediation tracked?
Evidence to prepare before an incident
Maintain owner lists, vendor contacts, data maps, system logs, incident intake forms, escalation templates, customer communication drafts, and remediation trackers. A breach process is useful only if teams know where to find it when pressure is high.