What does a DPO do?

Подписаться 6 тыс.

Просмотров 7 тыс.

50% 1

Looking to achieve GDPR compliance within your organisation? Arrange a demo and free 14-day trial of Keepabl's award-winning Privacy Management SaaS: bit.ly/3f2hWaA
So what DOES a DPO actually do? After watching our 'Do I need a DPO?' video, this video takes you through what tasks a DPO can - and importantly can't - do and gives you a Bonus Tip that just might save you and your organisation a ton of embarrassment and potentially far worse. In April 2020, a Belgian company was fined €50k for having its Head of Audit, Risk & Compliance as their DPO - make sure that's not you!
Want more top tips on how to operationalise Privacy at your organisation? Sign up to the Keepabl monthly newsletter: privacykitchen.tv/newsletter
Links:
GDPR
eur-lex.europa.eu/eli/reg/201...
Art 29 WP, WP 243 rev.01, Guidelines on Data Protection Officers (‘DPOs’), Adopted on 13 December 2016, As last Revised and Adopted on 5 April 2017
ec.europa.eu/newsroom/article...
EDPS Position paper on the role of Data Protection Officers of the EU institutions and bodies 30 September 2018 edps.europa.eu/sites/edp/file...
UK ICO Guidance on DPOs
ico.org.uk/for-organisations/...
German DPA fine re IT Manager
www.lda.bayern.de/media/pm201...
Belgian DPA fine re Head of Audit, Risk & Compliance, 2020
www.gegevensbeschermingsautor...

Опубликовано:

12 июн 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 11

@PrivacyKitchen 2 года назад

Looking to achieve GDPR compliance within your organisation? Arrange a demo and free 14-day trial of Keepabl's award-winning Privacy Management SaaS: bit.ly/3iWSyEl

@andisortino4243 Год назад

You mention several good available options for outsourcing a DPO. Do you have a list of those?

@PrivacyKitchen Год назад

Hi Andi, if you email us at hello@keepabl.com we'd be happy to discuss that with you to see if we can recommend the right person / team.

@robertopires587 Год назад

Hi, how do I start the process of GDPR compliance for a start up?

@PrivacyKitchen Год назад

Hi Roberto, thanks for your question. Why not drop us an email at hello@keepabl.com to discuss your situation? Alternatively, you can find a useful download in the "Home" section of our channel!

@Amelia-qm6bk 2 года назад

So do DPO respond to dsars? Thanks

@PrivacyKitchen 2 года назад

What a great question! Well, we're not aware of a decision on this and neither the Art 29 WP/EDPB nor ICO guidance mention DPOs and DSARs. They do mention DPIAs and both state that it's the obligation of the controller not the DPO to complete the DPIA, the DPO advises. If one was being overly technical, one might say that doing a DSAR is a conflict, and the DPO should only advise, which is certainly the safest position. However we're aware many organisations have their DPOs do the DSAR, and many DPOs do DSARs.

@lacoco4090 Год назад

How i can become a DPO

@ankitghate4366 2 года назад

Can a lawyer become dpo

@truemando956 2 года назад

Lol, I had the same question.. therefore I landed on this video.

@PrivacyKitchen 2 года назад

Hi and thanks for your question. You'll appreciate we can't give legal advice and this may vary from country to country even within the EEA. However - what we can say is that the DPO under GDPR should not be conflicted. If the lawyer is eg creating policies and procedures or eg has a management in the Legal department or otherwise and therefore has a role in reviewing individuals, hiring etc, then they are likely conflicted as 'marking their own homework' or 'behaving as a controller' based on the cases we discuss in the video and more recent cases. [Employees, including lawyers, are not controllers, their employer legal entity is. Here, we're talking about exercising a role that has 'controllership' qualities, as explained in the video]. We know this is a charged topic and can vary country by country!