The following are examples of the type of information that you should provide:
Internal investigation
Forensic investigation
Notified law enforcement
Frozen compromised accounts
Amended administrative safeguards (such as company practices, policies or procedures)
Amended technical or physical safeguards
Deleted information
Other