Data Protection Officer
A DPO must be appointed where:
processing is carried out by a public authority or body;
organizations’ core activities involve large scale processing of EU based individuals on a systemic basis, of special categories of data or data relating to criminal convictions; or
the national law of certain countries requires one, for example Germany.
Organisations are advised to appoint a DPO in all other cases.
We can act as your DPO either on a fully outsourced basis or can provide advice to your internal privacy team.
The GDPR tasks the DPO with specific responsibilities. It also permits controllers/processors to deletate greater responsibility and tasks to the DPO.
The GDPR allows the role of DPO to be outsourced to an external entity or organisation. We can either undertake this role as your Outsourced DPO, or provide DPO Support to assist your internal DPO.
Engaging an external DPO ensures independence of the DPO, allows full confidentiality among employees, allows the DPO to query data protection matters with the relevant regulator anonymously.
Our team of diverse professionals will provide your organisation with access to a wide range of skills and experience. Our members include specialists to assist public bodies and authorities.
We can assist with employee training, creating and maintaining data inventories and records of processing activities, liaising with supervisory authorities, maintaining a log of processing activities, privacy auditing/gap analysis, and keeping you up to date with the latest cases, legislation, guidance and ruling from the difference courts, parliaments and regulators in Europe.