Data Protection Officer is mandatory, again. Article 35 of the latest version of GDPR states that “The controller and processor shall designate a data protection officer in any case where: […] “. To clearly understand which controllers and processors are included in such categories, the local language versions – and perhaps some comments – are needed. Controller… Read More »
In the perspective of the new EU Data Protection Regulation, Companies which process personal data should have roles and organizational structures capable of ensuring the satisfaction of security requirements and compliance. For this purpose, the Data Protection Officer (DPO) Role is the main function that companies should identify. The DPO mission is to be a… Read More »
Do you remember the old fashioned DPS (Documento Programmatico per la Sicurezza)? When it was removed from the minimum required measures, the Italian Regulator didn’t mean that companies could abandon the analysis over the different kinds of data processing, the definition of the inherent risks and the measures to mitigate them. Actually, companies merely aiming to formally satisfy requirements… Read More »
In the last version of the Privacy Regulation, the DPO role is not compulsory but an option for Data Controllers. The DPO is mandatory for all organizations of the European Union (agencies). The last version of the Regulation made the certification an option. Organizations willing to be certified should appoint a manager to lead the project… Read More »
On tuesday october 13th, 14.00 hrs @ Agid, Rome via Listz 21 the first open doors workshop for drafting standards on those very important professional profiles will take place. If you are willing to participate a simple confirmation sent to UNINFO secretariat (salsano@uninfo.it) will be greatly appreciated. Best regards, Fabio GUASCONI
The data protection officer (“DPO”) is an essential component of a data privacy accountability framework, playing a crucial role in enabling organizations to ensure, and to demonstrate, data Privacy compliance. The role of the DPO is formally recognized and its responsibilities described in the General Data Protection Regulation proposed by the European Commission (the “Regulation”).… Read More »
Is the DPO role requirement downgrade, out of the recent EP position and Council General Approach (15/06/2015), a real understatement or a need for an intermediate shorter but common step ahead for all Member States? The Data Protection matter seems affected by annoyance and embarrassment both on the side of single individuals, which should feel themselves… Read More »
The controller and the processor shall designate, where applicable, a Data Protection Officer (DPO) on the basis of professional qualities and, in particular, knowledge and experience on data protection law and practices, and ability to fulfil the assigned tasks . The controller (or the processor) shall ensure that the Data Protection Officer is properly and timely involved… Read More »
The EU Council’s proposal for the Personal Data Protection Regulation approved on the 11th of June makes the DPO no longer mandatory for anyone. What did it mean for the DPO to be mandatory in the previous versions of the forthcoming Personal Data Protection Regulation? The digital transformation, or however you may call the big changes in our lives… Read More »
“The controller or the processor may, or where required by Union or Member State law shall, designate a data protection officer”. This is the opening of Article 35 of the Regulation as amended and approved by the EU Council on the 11th of June and which the Presidency submits for approval as a General Approach.… Read More »