Difference between revisions of "Data Protection Officer"
From Open Risk Manual
Wiki admin (talk | contribs) (Created page with "== Definition == Each European Union Community institution and body shall, in order to comply with Regulation (EU) 2018/1725, have a '''Data Protection Officer''' (DPO). * T...") |
Wiki admin (talk | contribs) |
||
| Line 1: | Line 1: | ||
== Definition == | == Definition == | ||
| − | Each European Union Community institution and body shall, in order to comply with Regulation (EU) 2018/1725, have a | + | A '''Data Protection Officer''' (DPO) is an entity within or authorised by an organisation to monitor internal compliance, inform and advise on data protection obligations and act as a contact point for data subjects and the supervisory authority. |
| + | |||
| + | Each European Union Community institution and body shall, in order to comply with Regulation (EU) 2018/1725, have a Data Protection Officer with the following role and responsibilities: | ||
* The DPO should be an expert on data protection law and practices | * The DPO should be an expert on data protection law and practices | ||
Latest revision as of 11:05, 30 September 2021
Definition
A Data Protection Officer (DPO) is an entity within or authorised by an organisation to monitor internal compliance, inform and advise on data protection obligations and act as a contact point for data subjects and the supervisory authority.
Each European Union Community institution and body shall, in order to comply with Regulation (EU) 2018/1725, have a Data Protection Officer with the following role and responsibilities:
- The DPO should be an expert on data protection law and practices
- Be in a position to operate independently within the organisation
- Ensure the internal application of the Regulation
- That the rights and freedoms of the data subjects are not likely to be adversely affected by the processing operations.
- The DPO shall keep a register of processing operations performed or controlled by the institution or body.
