Security breach at AU

Aarhus University has strong focus on personal data security and information security. In rare cases, security breaches may still occur. If any such breach occurs, it is important that you get in touch.

You can report a security breach that involves personal data via the form below.

You can report all other types of security breaches by contacting your local IT support.

Reporting of security breaches

Reporting security breaches as*

Employee of Aarhus University

Student

Private individual

On behalf of another person

As data processor for Aarhus University

Other

Name of the reporter

Email address of the reporter (if you wish to be anonymous, you must enter ‘data-brud@au.dk’ in this field)

Tel. no. of the reporter

Date of breach

Which type of security breach does this concern? (Select the type(s) that best describe(s) the situation (you may tick several options))*

Information has been stolen, e.g. by cybercriminals gaining access to electronic data, or the theft of physical information.

Information has been sent to the wrong recipient(s).

There is information on AU’s website that should not be there.

A user of AU’s IT systems has access to information that he or she should not have.

Other

Is the security breach still active?*

Yes

When did you become aware of the security breach? (date and time)*

What is the reason for the security breach?

State which type(s) of information this concerns

How many persons are affected by the security breach?*

What are the consequences of the security breach for the persons concerned?

Which remedial measures have been taken?*

For AU staff: Write the name of the system administrator, your contact person regarding the processing of data or your immediate manager

To avoid spam, please make the calculation and write the answer here*

Don't fill this field!

Aarhus University is the data controller for processing your personal data. We process the personal data that you provide in connection with the report (e.g. name, address and email address) for the following purposes:

to identify the person who has reported a security breach.
to acknowledge that we have received the report.
to contact you if there is a need for additional information/action.

Your personal data will be both stored while the breach is being dealt with and afterwards in connection with our records of the case.

You can read about your rights in AU’s privacy policy

Do you have any questions?

Do you have any questions, you can contact AU's data protection officer at dpo@au.dk

Can't find what you are looking for, click here to use the orange search box on the front page

What is a security breach?

A breach of personal data security occurs when the breach leads to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data that is transmitted, stored or otherwise processed, whether the processing takes place manually or electronically.

This not only concerns physical or technical security breaches, e.g. if a computer is hacked and data is stolen, but also cases where e.g. an employee breaches the rules by disclosing personal data. The decisive aspect is whether the personal data has been compromised in one way or another.

Do you want to be anonymous?

You have the opportunity to make your report anonymously – i.e. there is no requirement to provide your name, email address or telephone no. If you report a security breach anonymously, you will not receive any acknowledgement that Aarhus University has received your report. You must also be aware that any failure to provide contact details may ultimately entail that your report does not lead to any changes, if the university assesses that there is insufficient information in the report for the matter to be pursued.

Revised 23.11.2020 -

Webredaktionen, Universitetsledelsens Stab