New reporting requirements being introduced by the GDPR will mean some changes to the way businesses, organisations and even the ICO identify, handle and respond to personal data breaches. The ICO has published a blog post seeking to debunk common myths in the press around data breach reporting and offers practical advice to organisations on reporting data breaches to the ICO, the details to be provided, fines and the rationale behind the reporting.