DATA PROTECTION OFFICER
The primary role of the data protection officer (DPO) is to monitor compliance with the applicable data protection rules. DPO:
- ensures that controllers and processors are informed of their rights, obligations and responsibilities under the GDPR and raises their level of awareness.
- monitors compliance with the GDPR, and internal policies on personal data protection and provides advice and guidance on their interpretation and application.
- cooperates with the supervisory authority and acts as the contact point for issues related to processing.
- cooperates with the controller (responding to its’ requests about investigations, complaint handling, inspections conducted etc.).
- draws attention to any failure to comply with the applicable data protection rules.
- trains employees on GDPR compliance requirements.
The role of DPO is mandatory under GDPR in these specific cases:
- where a public authority or body carries out data processing;
- where the core activities of the controller or the processor consist of processing operation which require regular and systematic monitoring of data subjects on large scale;
- where the core activities consist of large-scale processing of special categories of data or personal data relating to criminal convictions and offences.
All other organisations that are not legally obliged may voluntarily designate the DPO. The GDPR allows to choose whether the functions of Data Protection Officer will be performed by an employee or external expert.
ECOVIS ProventusLaw provides the services of Data Protection Officer.
News
Knowledge without experience is of little use. Therefore we are proud of having our own valuable experience to share with you.