References
- Art. 29 Data Protection Working Party. 2017. “Guidelines on the Application and Setting of Administrative Fines for the Purposes of the Regulation 2016/679”. WP 253.
- Art. 29 Data Protection Working Party. 2018. “Guidelines on Personal Data Breach Notification Under Regulation 2016/679”. WP250 rev.01.
- Cichonski, P., T. Millar, T. Grance, and K. Scarfone. 2012. “NIST Special Publication 800-61 Revision 2: Computer Security Incident Handling Guide Recommendations”. NIST Special Publication. doi:10.6028/NIST.SP.800-61r2.
- ENISA. 2017. “Incident Notification for DSPs in the context of the NIS Directive”. https://www.enisa.europa.eu/publications/incident-notification-for-dsps-in-the-context-of-the-nis-directive/at_download/fullReport.
- European Banking Federation. 2020. “EBF Position on Cyber Incident Reporting”. https://www.ebf.eu/wp-content/uploads/2020/06/EBF-position-paper-on-cyber-incident-reporting_annex-on-FLIIS.pdf.
- European Commission. 2020. “Proposal for a Directive of the European Parliament and of the Council on Measures for a High Common Level of Cybersecurity Across the Union, Repealing Directive (EU) 2016/1148”. COM(2020) 823 Final.
- Halevi, T., N. Memon, and O. Nov. 2015. “Spear-Phishing in the Wild: A Real-World Study of Personality, Phishing Self-efficacy and Vulnerability to Spear-Phishing Attacks”. doi:10.2139/ssrn.2544742.
- Hansen, M., M. Jensen, and M. Rost. 2015. “Protection Goals for Privacy Engineering”. IEEE Security and Privacy Workshops. https://ieeexplore.ieee.org/document/7163220.
- Laue, P. 2019. “Art. 34 DSGVO.” In Recht der elektronischen Medien, edited by G. Spindler and F. Schuster. München: C.H. Beck.
- Martini, M. 2018. “Art. 33 DSGVO.” In Beck’sche Kompakt-Kommentare, Datenschutz-Grundverordnung Bundesdatenschutzgesetz, edited by B. Paal and D. Pauly. München: C.H. Beck.
- NIS Cooperation Group. 2018. “Reference Document on Incident Notification for Operators of Essential Services”. CG Publication 02/2018. https://ec.europa.eu/information_society/newsroom/image/document/2018-30/reference_document_incident_reporting_00A3C6D5-9BDB-23AA-240AF504DA77F0A6_53644.pdf.
- Uwer, D. 2020. “§ 29 BDSG.” In Beck’scher Online-Kommentar Datenschutzrecht, edited by S. Brink and H. A. Wolff. München: C.H. Beck.
- Weulen Kranenbarg, M., T. J. Holt, and J. van der Ham. 2018. “Don’t Shoot the Messenger! A Criminological and Computer Science Perspective on Coordinated Vulnerability Disclosure”. 7 Crime Science 16. doi:10.1186/s40163-018-0090-8.