The 2017 European Union report indicated that in certain countries cybercrime exceeded 50% of all crimes and 80% of companies had been victims of at least one attack of this type. It is not only necessary for GDPR compliance, but also to minimize the impact of incidents that can cause significant damage to both the entities and the individuals affected.