Definition of severity level
As introduced during the methodology description, the overall severity (SE) is calculated by the following formula:
SE = DPC x EI + CB
The final score shows the level of severity of a certain breach, taking into account the impact to the individuals.
| SE < 2 | Low | Individuals either will not be affected or may encounter a few inconveniences, which they will overcome without any problem (time spent re-entering information, annoyances, irritations, etc.). |
| 2 < SE < 3 | Medium | Individuals may encounter significant inconveniences, which they will be able to overcome despite a few difficulties (extra costs, denial of access to business services, fear, lack of understanding, stress, minor physical ailments, etc.). |
| 3 < SE < 4 | High | Individuals may encounter significant consequences, which they should be able to overcome albeit with serious difficulties (misappropriation of funds, blacklisting by banks, property damage, loss of employment, subpoena, worsening of health, etc.). |
| 4 < SEd | Very high | Individuals may encounter significant, or even irreversible, consequences, which they may not overcome (financial distress such as substantial debt or inability to work, long-term psychological or physical ailments, death, etc.). |
Last modified: Saturday, 20 February 2021, 10:54 PM