In the following, Deutsche Telekom provides information on processes relevant to data privacy and the measures it has taken to counteract them.
With introduction oft the General Data Protection Regulation (GDPR) in May 2018, the threshold for reporting a data breach has been lowered. Low-risk incidents must now be reported to the authorities aswell. This also includes e.g. incorrectly sent emails and invoices.
In the following only significant cases of data breaches from the last years will be listed.
The document "Reporting of Data Breaches" (pdf, 863.8 KB) explains what a data privacy incident can be and how the internal reporting process works.register