The Incident Response Form serves as a critical documentation tool for organizations operating under Austrian jurisdiction to properly record, track, and respond to security incidents. This document is essential for maintaining compliance with various regulatory requirements, including the EU General Data Protection Regulation (GDPR), Austrian Data Protection Act (DSG), and Network and Information Systems Security Act (NISG). The form should be utilized immediately upon incident detection to capture vital information about the nature of the incident, affected systems, impact assessment, and response actions. It ensures standardized documentation of incidents while facilitating proper reporting to relevant authorities when required. The Incident Response Form is designed to support both technical and management stakeholders in understanding and responding to security events, while maintaining an audit trail for regulatory compliance and internal review purposes.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
1. Incident Details: Basic information including incident ID, date/time of discovery, date/time of occurrence, and location
2. Initial Reporter Information: Contact details of the person who first reported or discovered the incident
3. Incident Classification: Severity level, type of incident (e.g., data breach, system outage, security breach), and initial impact assessment
4. Affected Systems/Assets: List of affected IT systems, infrastructure, data, or other assets
5. Impact Assessment: Detailed analysis of the incident's impact on operations, data, and stakeholders
6. Response Actions Taken: Chronological documentation of immediate actions taken to contain and respond to the incident
7. Regulatory Compliance Check: Assessment of reporting obligations under GDPR, NIS, and other applicable regulations
8. Communication Log: Record of all internal and external communications related to the incident
9. Resolution Details: Description of how the incident was resolved and current status
1. Data Breach Details: Additional section required when personal data is compromised, including categories of data affected and number of data subjects
2. Critical Infrastructure Impact: Required for incidents affecting essential services under NIS regulations
3. Law Enforcement Notification: Section for documenting criminal aspects and law enforcement involvement
4. Business Continuity Measures: Documentation of business continuity and disaster recovery procedures activated
5. Third-Party Involvement: Details of external security teams, contractors, or vendors involved in incident response
1. Appendix A - Evidence Log: Detailed log of all evidence collected during incident investigation
2. Appendix B - Technical Analysis Report: Detailed technical analysis of the incident, including system logs and forensic findings
3. Appendix C - Regulatory Notification Forms: Copies of notifications submitted to regulatory authorities
4. Appendix D - Incident Timeline: Detailed chronological timeline of the incident from detection to resolution
5. Appendix E - Affected Assets Inventory: Comprehensive inventory of all affected systems, applications, and data assets
Find the exact document you need
Incident Notification Form
Austrian-compliant incident notification form for standardized reporting of various types of incidents, ensuring regulatory compliance and proper documentation.
Download
Hazard Report Form
An Austrian law-compliant form for reporting and documenting workplace hazards and safety concerns, aligned with ArbeitnehmerInnenschutzgesetz requirements.
Download
Security Incident Report Form
Austrian-compliant Security Incident Report Form for documenting and reporting security incidents and data breaches in accordance with local and EU regulations.
Download
Incident Response Form
A standardized form for documenting and managing security incidents in compliance with Austrian and EU regulations, including GDPR and NISG requirements.
Download
Incident Investigation Form
A comprehensive incident investigation form compliant with Austrian workplace safety regulations and GDPR requirements, designed for documenting and analyzing workplace incidents.
Download
ұԾ’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; ұԾ’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)