A “data breach” is generally defined as an unauthorized disclosure or mismanagement of information that compromises the security, confidentiality, or integrity of personally identifiable information (PII), such as Social Security numbers, name and addresses, date of birth, health care information and bank account information.
The term defined in the WV OT Information Security Policy is Security Incident – An event characterized by unexpected and unwanted system behavior, breach, or unintended alteration of data.
These terms are used interchangeably and reference various forms of information security breaches which generally include:
National Institute of Standards and Technology
CMS – HIPAA Security Rule
WVOT Information Policy