What does a DPO do?
Рет қаралды 7,331
Күн бұрынLooking to achieve GDPR compliance within your organisation? Arrange a demo and free 14-day trial of Keepabl's award-winning Privacy Management SaaS: bit.ly/3f2hWaA
So what DOES a DPO actually do? After watching our 'Do I need a DPO?' video, this video takes you through what tasks a DPO can - and importantly can't - do and gives you a Bonus Tip that just might save you and your organisation a ton of embarrassment and potentially far worse. In April 2020, a Belgian company was fined €50k for having its Head of Audit, Risk & Compliance as their DPO - make sure that's not you!
Want more top tips on how to operationalise Privacy at your organisation? Sign up to the Keepabl monthly newsletter: privacykitchen.tv/newsletter
Links:
GDPR
eur-lex.europa.eu/eli/reg/201...
Art 29 WP, WP 243 rev.01, Guidelines on Data Protection Officers (‘DPOs’), Adopted on 13 December 2016, As last Revised and Adopted on 5 April 2017
ec.europa.eu/newsroom/article...
EDPS Position paper on the role of Data Protection Officers of the EU institutions and bodies 30 September 2018 edps.europa.eu/sites/edp/file...
UK ICO Guidance on DPOs
ico.org.uk/for-organisations/...
German DPA fine re IT Manager
www.lda.bayern.de/media/pm201...
Belgian DPA fine re Head of Audit, Risk & Compliance, 2020
www.gegevensbeschermingsautor...
@andisortino4243 Жыл бұрын
You mention several good available options for outsourcing a DPO. Do you have a list of those?
@PrivacyKitchen Жыл бұрын
Hi Andi, if you email us at hello@keepabl.com we'd be happy to discuss that with you to see if we can recommend the right person / team.
@robertopires587 Жыл бұрын
Hi, how do I start the process of GDPR compliance for a start up?
@PrivacyKitchen Жыл бұрын
Hi Roberto, thanks for your question. Why not drop us an email at hello@keepabl.com to discuss your situation? Alternatively, you can find a useful download in the "Home" section of our channel!
@Amelia-qm6bk 2 жыл бұрын
So do DPO respond to dsars? Thanks
@PrivacyKitchen Жыл бұрын
What a great question! Well, we're not aware of a decision on this and neither the Art 29 WP/EDPB nor ICO guidance mention DPOs and DSARs. They do mention DPIAs and both state that it's the obligation of the controller not the DPO to complete the DPIA, the DPO advises. If one was being overly technical, one might say that doing a DSAR is a conflict, and the DPO should only advise, which is certainly the safest position. However we're aware many organisations have their DPOs do the DSAR, and many DPOs do DSARs.
@PrivacyKitchen 2 жыл бұрын
Looking to achieve GDPR compliance within your organisation? Arrange a demo and free 14-day trial of Keepabl's award-winning Privacy Management SaaS: bit.ly/3iWSyEl
@lacoco4090 Жыл бұрын
How i can become a DPO
@ankitghate4366 2 жыл бұрын
Can a lawyer become dpo
@truemando956 2 жыл бұрын
Lol, I had the same question.. therefore I landed on this video.
@PrivacyKitchen 2 жыл бұрын
Hi and thanks for your question. You'll appreciate we can't give legal advice and this may vary from country to country even within the EEA. However - what we can say is that the DPO under GDPR should not be conflicted. If the lawyer is eg creating policies and procedures or eg has a management in the Legal department or otherwise and therefore has a role in reviewing individuals, hiring etc, then they are likely conflicted as 'marking their own homework' or 'behaving as a controller' based on the cases we discuss in the video and more recent cases. [Employees, including lawyers, are not controllers, their employer legal entity is. Here, we're talking about exercising a role that has 'controllership' qualities, as explained in the video]. We know this is a charged topic and can vary country by country!
iSTORM®️ Privacy-Security-Pentesting
Рет қаралды 3,4 М.
iSTORM®️ Privacy-Security-Pentesting
Рет қаралды 2,3 М.
Computer Science
Рет қаралды 25 М.
Prabh Nair
Рет қаралды 13 М.
DSCI IN
Рет қаралды 1,3 М.