A proposed adequate definition of a data breach
A data breach occurs when information is obtained by an unauthorised party in a fashion in which it was not intended to be made available.
Eminently sensible; the definition shouldn’t hinge on technicalities about how the data got away. (I wonder if that means we should be using a different word than “breach”?)