An incident response plan enables a Firm to respond in an organised and timely manner in an event of the event of data breach induced security incidents. Our plan is derived from industry standards (ISO/IEC 27035:2011, PCI-DSS v3.2 and NIST 800-61) and applicable data privacy regulation(s) (e.g., BDSG in Germany, GDPR in the EU).