Data Protection Officer

From Open Risk Manual
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

Definition

A Data Protection Officer (DPO) is an entity within or authorised by an organisation to monitor internal compliance, inform and advise on data protection obligations and act as a contact point for data subjects and the supervisory authority.

Each European Union Community institution and body shall, in order to comply with Regulation (EU) 2018/1725, have a Data Protection Officer with the following role and responsibilities:

  • The DPO should be an expert on data protection law and practices
  • Be in a position to operate independently within the organisation
  • Ensure the internal application of the Regulation
  • That the rights and freedoms of the data subjects are not likely to be adversely affected by the processing operations.
  • The DPO shall keep a register of processing operations performed or controlled by the institution or body.

References

Retrieved from "https://www.openriskmanual.org/wiki/index.php?title=Data_Protection_Officer&oldid=26201"
Creative Commons Attribution-NonCommercial-ShareAlike
Powered by MediaWiki