Data Protection Officer

From Open Risk Manual

Definition

A Data Protection Officer (DPO) is an entity within or authorised by an organisation to monitor internal compliance, inform and advise on data protection obligations and act as a contact point for data subjects and the supervisory authority.

Each European Union Community institution and body shall, in order to comply with Regulation (EU) 2018/1725, have a Data Protection Officer with the following role and responsibilities:

  • The DPO should be an expert on data protection law and practices
  • Be in a position to operate independently within the organisation
  • Ensure the internal application of the Regulation
  • That the rights and freedoms of the data subjects are not likely to be adversely affected by the processing operations.
  • The DPO shall keep a register of processing operations performed or controlled by the institution or body.

References

Retrieved from "https://www.openriskmanual.org/wiki/index.php?title=Data_Protection_Officer&oldid=26201"
  • Creative Commons Attribution-NonCommercial-ShareAlike
  • Powered by MediaWiki
  • Powered by Semantic MediaWiki