130 days, 1,500 notifications: Does Dutch breach rule foreshadow GDPR? | Resources | Morrison Foerster: European DPAs should be prepared and equipped with sufficient capacity and resources to follow up, investigate, and enforce large numbers of breach notifications because, if they aren’t ready, they risk undermining the legitimacy of the breach notification rules altogether.