COVID-19 - We are open for business and here to help ->

Under GDPR, you must appoint a data protection officer (DPO) if you

  • are a public authority (except for courts acting in their judicial capacity);
  • carry out large scale systematic monitoring of individuals (for example, online behaviour tracking); or
  • carry out large scale processing of special categories of data or data relating to criminal convictions and offences.

If your business does not perform any of the above, it may still decide to voluntarily appoint a DPO. However, even though in this regard it would not be mandatory, there is no ‘DPO-lite’. There is an obligation in Article 37(5) to ensure you appoint a person who is adequately resourced and has “expert knowledge of data protection law and practices” and on the basis of their “professional qualities”.

The guidelines suggest that the level of expertise “must be commensurate with the sensitivity, complexity and amount of data an organisation processes” and that prospective DPOs “should have expertise in national and European data protection laws and practices and an in-depth understanding of the GDPR.” It is expected that experience would be garnered from backgrounds that include risk management, legal and accreditation from processes such as ISO27001, CIPP-E certifications, etc.

The ICO provides guidance useful in respect of DPOs at https://ico.org.uk/for-organisations/data-protection-reform/overview-of-the-gdpr/accountability-and-governance/

Contact our Data Protection and GDPR Solicitors Liverpool, Wirral, Merseyside and Across England & Wales

For data protection and GDPR advice and support for your business, contact our specialist team on 0151 659 1070 or complete our online enquiry form for a free consultation.

 

Make a free enquiry, call now

0151 659 1070




Please let us know your name.



Please enter a valid telephone number



Please let us know your email address.



Please let us know your message.



Invalid Input

Invalid Input
I understand that by submitting my query to you, my personal data (name, email address and contact number) will be processed by you in order to contact me and assist me with my query. I confirm I have read and understood the Privacy Notice and I consent to you processing my data for the purpose of contacting me to assist me with my query.




What our clients say

How can we help you?

To find how our friendly and knowledgeable solicitors can help you, contact us today.

Make a free enquiry - Call now - 0151 659 1070