Given a scenario where user data has been compromised, what actions would you take to remediate the situation?