If you thought getting a quick answer from the government was tough, try waiting for them to report a data breach! Spoiler alert: It averages just over four months, and that’s not the best in the business.
Key Points
- Average reporting time for government data breaches is 4.13 months.
- The legal sector has the longest reporting time at 6.4 months.
- Overall business reports data breaches in about 4.2 months.
- The healthcare sector reports breaches the quickest at 3.7 months.
- States with set reporting timeframes typically report quicker, averaging 3.9 months.
- The longest delay reported was a staggering 38 months, affecting patients’ data in the healthcare sector.
Content Summary
According to an analysis by Comparitech regarding ransomware breaches from 2018 to 2023, the average time it takes for governments to inform affected individuals about data breaches is about 4.13 months. Surprisingly, this isn’t the slowest reporting time across all sectors. The legal industry actually takes longer, averaging 6.4 months, while businesses as a whole match the government’s pace at 4.2 months. In contrast, the healthcare sector is the most efficient, averaging just 3.7 months.
The study also noted that states with established reporting timelines generally respond faster, while those without such protocols average 4.2 months. An alarming case involved Ventura Orthopedics which took an astonishing 38 months to notify patients after a ransomware incident in July 2020, believing initially that only one patient’s data was compromised.
Why should I read this?
This article sheds light on the often frustratingly slow process of data breach reporting within government sectors. Understanding these timelines can help you know what to expect if your data is ever compromised. Plus, it highlights the importance of having clear protocols in place to improve response times. So, stay informed and keep your data safe!