Folelse

Product

Features Live Demo Pricing Roadmap

NHS & Compliance

DSPT Guidance NHS Data Guide ICO Resources Free DPA Template

Resources

Blog Resource Hub FAQ

Company

About System Status
Support
Log in Get started free

Help Centre

Data Breaches 3 min read

Closing a breach and "No Report Required" status

Once your investigation is complete and all required notifications have been made, you should formally close the breach record in Folelse. Closed records are retained permanently in your audit history.

Status options when closing

  • Reported to ICO — use this when you have notified the ICO and the investigation is complete.
  • Closed — use this after notifying the ICO AND (if required) affected individuals, and after all remediation actions are complete.
  • No Report Required — use this when you have investigated and confirmed the breach does not meet the threshold for ICO notification. Document your reasoning clearly.

How to close a breach

  1. 1 Open the breach record.
  2. 2 Confirm all required fields are completed (severity, data types, root cause, containment).
  3. 3 If notification was required, confirm the ICO reference number is recorded.
  4. 4 If individual notification was required, confirm it was sent and attach evidence.
  5. 5 Update the status to "Closed" or "No Report Required".
  6. 6 Add a final summary in the Internal Notes field.
  7. 7 Click Save.

Even "No Report Required" breaches should be documented. The ICO expects you to keep a record of ALL personal data breaches, including those below the notification threshold. These records demonstrate your accountability and help you spot repeat patterns.

Need more help with this?

Contact support

Related articles

Logging a data breach or security incident 4m The 72-hour ICO notification rule — explained 5m Understanding breach severity levels 3m
Back to Data Breaches