Macha has a structured, transparent, and timely incident response plan to address any potential data breach. Our goal is to minimize impact, notify affected parties quickly, and strengthen systems to prevent recurrence.
Our 7-Step Breach Response Plan
-
Detection
Any Macha employee, monitoring system, or third-party can report suspicious activity such as:-
Unauthorized access
-
Data integrity issues
-
Unexpected behavior or API usage
-
Credential leaks
-
-
Initial Triage (Within 4 Hours)
Our Security and Engineering leads:-
Confirm whether it’s a true breach
-
Identify systems and data types involved
-
Determine if the breach is ongoing
-
-
Containment (Immediate)
-
Revoke compromised credentials
-
Isolate affected systems
-
Suspend impacted integrations
-
Notify key third-party providers (e.g., Supabase, DigitalOcean)
-
-
Root Cause Analysis (Within 24 Hours)
-
Review access logs and audit trails
-
Identify entry points
-
Document impacted data and services
-
-
Notification Protocol (Within 72 Hours)
If the breach affects personal data:-
EU authorities are notified within 72 hours (per GDPR)
-
Affected customers are contacted with a clear summary:
-
What happened
-
What data was affected
-
What steps to take
-
What Macha is doing in response
-
-
-
Remediation & Recovery
-
Patch vulnerabilities
-
Rotate tokens and API keys
-
Perform a system-wide security audit
-
Update SOPs to prevent recurrence
-
-
Documentation & Lessons Learned
-
A full post-mortem report is logged
-
Retrospective held with stakeholders
-
Actionable improvements are implemented
-
Breach Response Timeline
| Phase | Target Completion |
|---|---|
| Initial Triage | Within 4 hours |
| Root Cause Analysis | Within 24 hours |
| Customer Notification | Within 72 hours (if required) |
| Full Remediation | As soon as safely possible |
Questions or Concerns?
If you’d like a copy of our full incident response policy or believe your account may have been affected, please reach out to us at support@getmacha.com.