For any company that stores user data online, a data breach is far more than just an internal issue. The protocols for responding to a data breach are routinely set out in a company’s online privacy policy, which users are required to review and approve before engaging with the site and uploading data.