Reporting a Cyber Security Incident

If your cyber incident is ongoing please phone PSNI on 101

If you have been a victim of a cyber incident or fraud please refer to the Action Fraud website or phone 03001232040

Know your obligations

Reporting a cyber incident to Action fraud or PSNI does not fulfil your legal obligations under GDPR or NIS legislation.

  • Data Breach – under the General Data Protection Regulations (GDPR 2018) if you have been subject to a data breach of personal information, contact the Information Commissioner’s Office (ICO). Details of reporting a data breach can be found on the ICO website.
  • Network Information Systems (NIS) Directive -  If you have been designated an operator of essential services in Northern Ireland, as defined under the Network Information Services (NIS) regulations (2018), you are obliged to report any NIS related incidents directly to the Northern Ireland Competent Authority within 72 hours of discovering the incident. More information on NIS and how to report a NIS incident can be found here.