skip to main content


The obligation imposed by GDPR to inform regulators and possibly affected EU citizens formally (as well as greatly increased potential non-compliance penalties) escalates the importance of handling breach reporting, and requires solution-based support.


  • This is an immature market in which there are only a few "early-mover" vendors offering enterprise-strength solutions. Most solutions featured in this report have been developed as extensions or modifications of existing products in adjacent markets.

Features and Benefits

  • The report details key recommendations for enterprises, vendors, and service providers dealing with critical customer requirements.
  • The report details important elements of organizational approach across people and process, as well as detailing solution options.

Key questions answered

  • What are the key factors to consider in establishing compliance with GDPR Articles 33 and 34?
  • Who are the vendors with enterprise-strength solutions, and what are their strengths and weaknesses?
  • What other factors should my organization consider beyond solution selection and implementation?

Table of contents


  • Catalyst
  • Ovum view
  • Key messages


  • Recommendations for enterprises
  • Recommendations for vendors
  • Recommendations for service providers

Defining and exploring data breach management and reporting

  • Definition and characteristics
  • Key capabilities
  • Business value and applications

Market landscape and participants

  • Market origin and dynamics
  • Key trends in the data breach management and reporting market
  • Future market development
  • Vendor landscape

Vendors on the Ovum Market Radar in Data Breach Management and Reporting

  • On the Radar: Appian and KPMG form an alliance to embed privacy and GDPR compliance across customer organizations
  • On the Radar: Cherwell combines workflow and service management capabilities for a data breach management solution
  • On the Radar: IBM Resilient applies incident response orchestration to GDPR data breaches
  • On the Radar: OneTrust provides GDPR-aligned incident and breach management
  • Summary
  • On the Radar: RSA Archer Suite and NetWitness Platform combine for GDPR breach preparedness
  • On the Radar: ServiceNow applies enterprise workflow automation to GDPR breach management


  • On the Radar
  • Further reading
  • Author