Value

Type of

Effect

Level

of Effect

Company Embarrassment Level

Personal Safety Implication

Personal Privacy Infringement

Failure to Meet Legal Obligations

Financial Loss (£)

Disruption to Activities (£) (Time & Effort to Recover from Incident)

1

Insignificant

Contained within Work Area at worst

Minor injury to individual

Isolated personal detail revealed

Civil suit resulting in less than £10k damages

Up to 10k

Up to 10k

2

Minor

Contained within Company at worst

Minor injury to several people

Isolated personal detail compromised

Civil suit (above £10k). Small fine (up to £1k)

10k to 100k

10k to 100k

3

Significant

Local public or Press become aware

Major injury to individual

Several personal details revealed

Large fine (above £10k)

100k to 500k

100k - 500k

4

Major

National public or Press become aware

Major injury to several people or death of individual

Several personal details compromised

Custodial sentence imposed

500k - 1000k

500k - 1000k

5

Acute

Senior Staff forced to resign or Company fails

Death of several people

All personal details revealed and/or compromised

Multiple civil or criminal suits

Above 1000k

Above 1000k