A DPO, or privacy officer, is a privacy expert who independently advises and reports on compliance with privacy laws – first and foremost, the GDPR (if you are located in the EU).
Appointing a DPO is compulsory under the GDPR if:
Appointing a DPO may be invaluable for your organisation, even if you are not obligated to do so. DPOs help organisations comply with privacy regulations, prevent personal data breaches, and take the required steps in the event of an unavoidable breach. Moreover, a DPO can help significantly reduce your organisation’s risk of fines and civil liabilities due to privacy violations.
Furthermore, a DPO can help improve your organisation’s relationship with both customers and employees, by ensuring that their privacy is appropriately safeguarded.
A DPO can be appointed either internally (an employee) or externally (an independent service provider). However, it is important to be aware that the DPO must be sufficiently independent and free of any real or perceived conflicts of interest. For example, appointing a person from HR or a security officer as DPO is generally not advised. Appointing an external DPO can help ensure that the DPO is sufficiently independent.
If you would like to appoint an external DPO, you may consider hiring a DPO via Legal ICT.
We offer two possibilities:
Our DPOs are members of the International Association of Privacy Professionals (IAPP) and Certified Information Privacy Professionals/Europe (CIPP/E). This helps ensure that your organisation will have up-to-date and specialised privacy knowledge available at all times.
Our DPOs can help your organisation by carrying out the following tasks, among others:
WOULD YOU LIKE MORE INFORMATION?
Send an e-mail to email@example.com or call us on +32 (0)2 535 77 55. Alternatively, you can fill out the form below. One of our legal advisors will get back to you very soon.
With the help from a well executed Privacy Impact Assessment you document which data are going to be collected, why this is needed, how the data are going to be used and shared, and how the security of that is guaranteed. When the Global Data Protection Regulation (GDPR) comes into effect on the 25th of May 2018, PIA’s are mandatory in certain situations.
A clear contract is a prerequisite for all IT projects. Legal ICT can help you draft or review your, or your client’s, IT-contracts.
Avenue Louise 65, 1000, Brussels, +32 (0)2 535 77 55, firstname.lastname@example.org