WHO IS THE DPO | RPD?
Article. 37 of the European Privacy Regulation has introduced, for the first time, the obligation for Data Controllers and Data Processors to appoint a Data Protection Officer (DPO).
The DPO , a figure historically already present in some European legislation, is a professional (whether internal or external) who must have a corporate role with legal, IT, risk management and process analysis skills .
Its main responsibility is to observe, evaluate and organize the management of the processing of personal data (and therefore their protection) within a company , both public and private, so that these are processed in compliance with European and national privacy regulations.
SERVICE: DPO through a service contract
PrivacyControl, through a team of expert and certified consultants, proposes a service contract pursuant to Art. 37, c.6 of the Data Protection Regulation GDPR 216/679 carrying out the tasks required by the EU Privacy Regulation 2016/679 on behalf of the customer.
The services offered to the Data Controller or the Data Processor, by way of example, are:
- Privacy Assessment
- Data Protection Impact Assessment
- Privacy Intervention Plan
- Establishment and keeping of the Privacy Register
- Privacy Document Management
- Privacy Training
- Opinions and privacy advice
- Audit for monitoring compliance with privacy legislation
- Cooperation with the Privacy Guarantors
Do not take unnecessary risks waiting for the last moment to adapt, in case of non-compliance with the privacy obligations, the European Privacy Regulation provides for administrative fines of up to € 20,000,000 or up to 4% of your turnover if greater than this amount.