Data breach

A data breach occurs when an attacker or unauthorised party obtains access to data they should not be able to see. For Flinn customers this could expose regulatory submissions, incident reports, internal evaluations or other sensitive content.

Hazardous situation: Sensitive regulatory data is compromised through unauthorised access to the Flinn platform.

• Role-based access control. Access to data is governed by a defined role and permission model that grants each user only the access required for their work. See Roles & Permissions for the full model and configuration steps.
• Audit trail. Every relevant action in Flinn is recorded. The Audit Trail provides a tamper-resistant record that supports detection of anomalous access patterns and forensic investigation of any incident.
• Personal data protection. Personal data handled by Flinn is protected through technical and organisational measures aligned with applicable regulations. See How is my personal data protected? for the safeguards in place.
• Baseline access requirements. The platform enforces minimum software and access requirements designed to reduce exposure on the client side. See What are the software setup requirements to use Flinn? and I cannot access Flinn anymore, what should I do? for guidance on safe access management.
• Monitoring and response. Flinn continuously monitors platform activity and investigates suspicious behaviour. If you believe your account or data may have been compromised, contact support immediately via the in-app chat — see What is the web chat?.

By combining identity-bound access control, comprehensive audit logging, data-protection safeguards and continuous monitoring, the residual likelihood of a successful breach is kept low.