The fields in the Report a privacy case form capture information about the suspected or confirmed privacy issue while keeping the reporter's identity confidential.

Table 1. Report a privacy case form

Field	Description
Type of privacy case	Nature of the privacy issue. For example, violation of customer data.
Brief summary of the privacy case	Short description of the privacy issue.
Date you became aware of this issue	Date when the case was discovered.
Describe what happened in a few words	Detailed account of what occurred, why it violates privacy standards, and potential organizational impact.
Rate this case on priority	Priority level of the case. 1 - Critical 2 - High 3 - Moderate 4 - Low 5 - Planning
Business units involved or impacted	Business units affected by the privacy issue. For example, HR, Operations, or Customer Service.
Departments involved or impacted	Departments affected by the privacy issue. For example, IT, Marketing, or Legal.
Location/jurisdiction	Location where the event occurred. For example, office site, department area, or customer environment.
Type of individuals impacted	Category of individuals whose data is affected. For example, employees, former employees, customers, contractors, vendors, or partners.
Personal data impacted	Types of personal data that were compromised. For example, credit card details, government ID numbers, or health information.
Number of impacted individuals	Total number of individuals whose personal data was exposed, accessed, or compromised.