Simulation note: This is a controlled teaching artefact for The LotusCare Breach (Simulation).
Content is fictional and designed to model organisational decision-making under uncertainty.
No real personal data, real ransomware instructions, or operational steps are included.
Staff FAQ (Internal)
These answers are designed for consistency. If unsure, escalate rather than speculate.
What do we say if clients ask about data exposure?
Use: “We are assessing external claims and will contact affected individuals directly if we confirm their information is involved.”
What if someone asks how many clients are affected?
Use: “We do not have verified numbers at this time. We will provide updates when confirmed.”
Should staff discuss this on social media?
No. Direct enquiries to the designated comms channel to avoid misinformation.
Escalation path (simulation)
| Issue | Escalate to | Reference |
|---|---|---|
| Media enquiry | Comms team | LC-COMMS-01 |
| Client distress / harm concern | Client Services lead | LC-CS-01 |
| Technical questions | Security team | LC-SEC-01 |