Nuqta

Crisis Communication Plan

Comprehensive playbook for handling crises, including response procedures, communication templates, and escalation protocols.

Severity Levels

Critical

Immediate executive response

High

Same-day response required

Medium

24-48 hour response

Low

Standard process handling

Examples

Hacker accessed user databaseEmployee leaked customer dataThird-party vendor breach affecting our usersMalware/ransomware attack on systems

Immediate Actions

1Isolate affected systems immediately
2Engage cybersecurity response team
3Document timeline of events
4Assess scope of data compromised
5Notify legal and compliance teams
6Prepare regulatory notifications (UAE PDPL)

Communication Plan

Internal

All-hands alert within 1 hour. Crisis team assembled. All external comms paused pending review.

Users

Direct notification to affected users within 72 hours (or as required by law). Clear explanation of what happened, what data was affected, and what we're doing.

Media

Prepared statement only. No speculation. Direct media to official statement. CEO available for critical outlets only.

Regulators

Notify UAE data protection authorities within required timeframe. Full cooperation with investigation.

Sample Messages

Email to Affected Users

Subject: Important Security Notice from Nuqta

Dear [Name],

We're writing to inform you of a security incident that may have affected your Nuqta account.

What happened:
On [date], we detected unauthorized access to some of our systems. We immediately took action to secure our systems and launched an investigation.

What information was involved:
Based on our investigation, the following information may have been accessed: [specific data types].

What we're doing:
• We've secured all affected systems
• We've engaged leading cybersecurity experts
• We've notified relevant authorities
• We're enhancing our security measures

What you can do:
• Change your Nuqta password
• Monitor your accounts for unusual activity
• Enable two-factor authentication if you haven't already

We're deeply sorry this happened. Your trust is our priority, and we're committed to making this right.

If you have questions, contact our dedicated support line: [number]

Sincerely,
Rejaul Karim
CEO, Nuqta

In-App Notification

Important: Please update your password. We detected a security issue and have secured your account. Tap here for details and next steps.

Social Media Statement

We detected a security incident affecting some user data. We've secured our systems and are contacting affected users directly. Your security is our priority. Updates: [link]

Recovery Steps

  • Complete forensic investigation
  • Implement additional security measures
  • Offer affected users credit monitoring (if applicable)
  • Publish transparency report
  • Conduct third-party security audit
  • Update security policies and training

Prevention Measures

  • Regular security audits and penetration testing
  • Employee security awareness training
  • Multi-factor authentication enforcement
  • Data encryption at rest and in transit
  • Vendor security assessments
  • Incident response drills