The EU's General Data Protection Regulation created the position of corporate Data Protection Officer (DPO), who is empowered to ensure the organization is compliant with all aspects of the new data protection regime. Organizations must now appoint and designate a DPO. The specific definitions and building blocks of the data protection regime are enhanced by the new General Data Protection Regulation and therefore the DPO will be very active in passing the message and requirements of the new data protection regime throughout the organization. This book explains the roles and responsiblies of the DPO, as well as highlights the potential cost of getting data protection wrong.
"The new data protection regime has arrived and one of the most important aspects involves the new position of the Data Protection Officer. The profession will find this an excellent resource." - Jan Philipp Albrecht, MEP, Vice Chair Committee on Civil Liberties, Justice and Home Affairs, and LIBE Data Protection Report Rapporteur
"What does it take to build effective data protection compliance programs under the new EU Data Protection Regulation? This book provides practical tips and valuable advice for organisations and data protection professionals." - Nina Gumzej, Professor, Chair of Legal Informatics
A New Profession: Introduction. New Profession. New Role in Organizations. The Regulation: New Data Protection Regime. Role: Role, Obligations, and Position. Independence. Relationship with Board. Relationship with Director Responsible for Data Protection. Relationship with IT. Relationship with Product Development. Relationship with HR. Obligation to Maintain Records. Staff Training Guides. Tasks: Tasks. Tasks in Detail.Tools of the Data Protection Officer: Tools of the Data Protection Officer. Accessing the Data Sources. Tools and Access Rights. Records. Engaging Processors. Tools and Data Protection by Design and by Default. Security and Data Breach Tools. Data Protection Impact Assessment Tools. Prior Consultation. Data Breach. Sample Data Protection Officer Data Sets. Model Tips and Guidelines for the Role and Tasks. Schedule: General Data Protection Regulation. Appendices: Data Protection Supervisory Authorities (EU). Data Protection Supervisory Authority (European Free Trade Area (EFTA)). Data Protection Supervisory Authorities (Outside EU). Data Protection Officer Associations. Reference Links. Legislation Links. European/International Legislation. EU Article 29 Working Party on Data Protection (WP29). Sample Cases to Consider. Decisions.