GDPR now requires many organisations to appoint a data protection officer, but how do you pick the most suitable candidate for the role?
As the General Data Protection Regulation (GDPR) deadline fast approaches (25 May 2018), many organisations will be preparing to appoint a data protection officer (DPO) in compliance with the new laws, specifically Article 37.
These regulations mark a significant turning point in terms of both the accountability of organisations and the rights of an individual whose data someone wants to process, and a DPO will play a vital role in instigating these changes.
The GDPR states that DPOs “shall be designated on the basis of professional qualities and, in particular, expert knowledge of data protection law and practices and the ability to fulfil the tasks [set out in the GDPR]”.
So, while in-depth knowledge of the GDPR and expertise in national and European data protection law is required, the regulation doesn’t specify any particular qualifications that a DPO must have.
Clique aqui e leia a matéria completa.